Vulnerabilities > Jsish

DATE CVE VULNERABILITY TITLE RISK
2024-02-07 CVE-2024-24186 Out-of-bounds Write vulnerability in Jsish 3.5.0
Jsish v3.5.0 (commit 42c694c) was discovered to contain a stack-overflow via the component IterGetKeysCallback at /jsish/src/jsiValue.c.
network
low complexity
jsish CWE-787
critical
9.8
2024-02-07 CVE-2024-24188 Out-of-bounds Write vulnerability in Jsish 3.5.0
Jsish v3.5.0 was discovered to contain a heap-buffer-overflow in ./src/jsiUtils.c.
network
low complexity
jsish CWE-787
critical
9.8
2024-02-07 CVE-2024-24189 Use After Free vulnerability in Jsish 3.5.0
Jsish v3.5.0 (commit 42c694c) was discovered to contain a use-after-free via the SplitChar at ./src/jsiUtils.c.
network
low complexity
jsish CWE-416
critical
9.8
2023-04-04 CVE-2020-23258 Out-of-bounds Write vulnerability in Jsish 3.0.11
An issue found in Jsish v.3.0.11 allows a remote attacker to cause a denial of service via the Jsi_ValueIsNumber function in ./src/jsiValue.c file.
network
low complexity
jsish CWE-787
7.5
2023-04-04 CVE-2020-23259 NULL Pointer Dereference vulnerability in Jsish
An issue found in Jsish v.3.0.11 and before allows an attacker to cause a denial of service via the Jsi_Strlen function in the src/jsiChar.c file.
network
low complexity
jsish CWE-476
7.5
2023-04-04 CVE-2020-23260 Out-of-bounds Write vulnerability in Jsish
An issue found in Jsish v.3.0.11 and before allows an attacker to cause a denial of service via the StringReplaceCmd function in the src/jsiChar.c file.
network
low complexity
jsish CWE-787
7.5
2022-01-27 CVE-2021-46484 Use After Free vulnerability in Jsish 3.5.0
Jsish v3.5.0 was discovered to contain a heap-use-after-free via Jsi_IncrRefCount in src/jsiValue.c.
local
low complexity
jsish CWE-416
5.5
2022-01-27 CVE-2021-46485 Unspecified vulnerability in Jsish 3.5.0
Jsish v3.5.0 was discovered to contain a SEGV vulnerability via Jsi_ValueIsNumber at src/jsiValue.c.
local
low complexity
jsish
5.5
2022-01-27 CVE-2021-46486 Unspecified vulnerability in Jsish 3.5.0
Jsish v3.5.0 was discovered to contain a SEGV vulnerability via jsi_ArraySpliceCmd at src/jsiArray.c.
local
low complexity
jsish
5.5
2022-01-27 CVE-2021-46487 Unspecified vulnerability in Jsish 3.5.0
Jsish v3.5.0 was discovered to contain a SEGV vulnerability via /lib/x86_64-linux-gnu/libc.so.6+0x18e506.
local
low complexity
jsish
5.5