Vulnerabilities > Jsish

DATE CVE VULNERABILITY TITLE RISK
2022-01-25 CVE-2021-46475 Out-of-bounds Write vulnerability in Jsish 3.5.0
Jsish v3.5.0 was discovered to contain a heap buffer overflow via jsi_ArraySliceCmd in src/jsiArray.c.
local
low complexity
jsish CWE-787
5.5
2022-01-25 CVE-2021-46477 Out-of-bounds Write vulnerability in Jsish 3.5.0
Jsish v3.5.0 was discovered to contain a heap buffer overflow via RegExp_constructor in src/jsiRegexp.c.
local
low complexity
jsish CWE-787
5.5
2022-01-25 CVE-2021-46478 Out-of-bounds Write vulnerability in Jsish 3.5.0
Jsish v3.5.0 was discovered to contain a heap buffer overflow via jsiClearStack in src/jsiEval.c.
local
low complexity
jsish CWE-787
5.5
2022-01-25 CVE-2021-46480 Out-of-bounds Write vulnerability in Jsish 3.5.0
Jsish v3.5.0 was discovered to contain a heap buffer overflow via jsiValueObjDelete in src/jsiEval.c.
local
low complexity
jsish CWE-787
5.5
2022-01-25 CVE-2021-46481 Memory Leak vulnerability in Jsish 3.5.0
Jsish v3.5.0 was discovered to contain a memory leak via linenoise at src/linenoise.c.
local
low complexity
jsish CWE-401
5.5
2022-01-25 CVE-2021-46482 Out-of-bounds Write vulnerability in Jsish 3.5.0
Jsish v3.5.0 was discovered to contain a heap buffer overflow via NumberConstructor at src/jsiNumber.c.
local
low complexity
jsish CWE-787
7.8
2022-01-25 CVE-2021-46483 Out-of-bounds Write vulnerability in Jsish 3.5.0
Jsish v3.5.0 was discovered to contain a heap buffer overflow via BooleanConstructor at src/jsiBool.c.
local
low complexity
jsish CWE-787
7.8
2021-07-13 CVE-2020-22873 Classic Buffer Overflow vulnerability in Jsish
Buffer overflow vulnerability in function NumberToPrecisionCmd in jsish before 3.0.7, allows remote attackers to execute arbitrary code.
network
low complexity
jsish CWE-120
critical
9.8
2021-07-13 CVE-2020-22874 Integer Overflow or Wraparound vulnerability in Jsish
Integer overflow vulnerability in function Jsi_ObjArraySizer in jsish before 3.0.8, allows remote attackers to execute arbitrary code.
network
low complexity
jsish CWE-190
critical
9.8
2021-07-13 CVE-2020-22875 Integer Overflow or Wraparound vulnerability in Jsish
Integer overflow vulnerability in function Jsi_ObjSetLength in jsish before 3.0.6, allows remote attackers to execute arbitrary code.
network
low complexity
jsish CWE-190
critical
9.8