Vulnerabilities > Jerryscript

DATE CVE VULNERABILITY TITLE RISK
2022-02-17 CVE-2022-22901 Reachable Assertion vulnerability in Jerryscript
There is an Assertion in 'context_p->next_scanner_info_p->type == SCANNER_TYPE_FUNCTION' failed at parser_parse_function_arguments in /js/js-parser.c of JerryScript commit a6ab5e9.
local
low complexity
jerryscript CWE-617
5.5
2022-01-25 CVE-2021-44988 Allocation of Resources Without Limits or Throttling vulnerability in Jerryscript 3.0.0
Jerryscript v3.0.0 and below was discovered to contain a stack overflow via ecma_find_named_property in ecma-helpers.c.
local
low complexity
jerryscript CWE-770
7.8
2022-01-25 CVE-2021-44992 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Jerryscript 3.0.0
There is an Assertion ''ecma_object_is_typedarray (obj_p)'' failed at /jerry-core/ecma/operations/ecma-typedarray-object.c in Jerryscript 3.0.0.
local
low complexity
jerryscript CWE-119
5.5
2022-01-25 CVE-2021-44993 Reachable Assertion vulnerability in Jerryscript 3.0.0
There is an Assertion ''ecma_is_value_boolean (base_value)'' failed at /jerry-core/ecma/operations/ecma-get-put-value.c in Jerryscript 3.0.0.
local
low complexity
jerryscript CWE-617
5.5
2022-01-25 CVE-2021-44994 Reachable Assertion vulnerability in Jerryscript 3.0.0
There is an Assertion ''JERRY_CONTEXT (jmem_heap_allocated_size) == 0'' failed at /jerry-core/jmem/jmem-heap.c in Jerryscript 3.0.0.
local
low complexity
jerryscript CWE-617
5.5
2022-01-21 CVE-2022-22891 Unspecified vulnerability in Jerryscript 3.0.0
Jerryscript 3.0.0 was discovered to contain a SEGV vulnerability via ecma_ref_object_inline in /jerry-core/ecma/base/ecma-gc.c.
local
low complexity
jerryscript
5.5
2022-01-21 CVE-2022-22892 Reachable Assertion vulnerability in Jerryscript 3.0.0
There is an Assertion 'ecma_is_value_undefined (value) || ecma_is_value_null (value) || ecma_is_value_boolean (value) || ecma_is_value_number (value) || ecma_is_value_string (value) || ecma_is_value_bigint (value) || ecma_is_value_symbol (value) || ecma_is_value_object (value)' failed at jerry-core/ecma/base/ecma-helpers-value.c in Jerryscripts 3.0.0.
local
low complexity
jerryscript CWE-617
5.5
2022-01-21 CVE-2022-22893 Out-of-bounds Write vulnerability in Jerryscript 3.0.0
Jerryscript 3.0.0 was discovered to contain a stack overflow via vm_loop.lto_priv.304 in /jerry-core/vm/vm.c.
local
low complexity
jerryscript CWE-787
7.8
2022-01-21 CVE-2022-22894 Out-of-bounds Write vulnerability in Jerryscript 3.0.0
Jerryscript 3.0.0 was discovered to contain a stack overflow via ecma_lcache_lookup in /jerry-core/ecma/base/ecma-lcache.c.
local
low complexity
jerryscript CWE-787
7.8
2022-01-21 CVE-2022-22895 Out-of-bounds Write vulnerability in Jerryscript 3.0.0
Jerryscript 3.0.0 was discovered to contain a heap-buffer-overflow via ecma_utf8_string_to_number_by_radix in /jerry-core/ecma/base/ecma-helpers-conversion.c.
local
low complexity
jerryscript CWE-787
7.8