Vulnerabilities > Jsish > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-02-07 CVE-2024-24186 Out-of-bounds Write vulnerability in Jsish 3.5.0
Jsish v3.5.0 (commit 42c694c) was discovered to contain a stack-overflow via the component IterGetKeysCallback at /jsish/src/jsiValue.c.
network
low complexity
jsish CWE-787
critical
 9.8
9.8
2024-02-07 CVE-2024-24188 Out-of-bounds Write vulnerability in Jsish 3.5.0
Jsish v3.5.0 was discovered to contain a heap-buffer-overflow in ./src/jsiUtils.c.
network
low complexity
jsish CWE-787
critical
 9.8
9.8
2024-02-07 CVE-2024-24189 Use After Free vulnerability in Jsish 3.5.0
Jsish v3.5.0 (commit 42c694c) was discovered to contain a use-after-free via the SplitChar at ./src/jsiUtils.c.
network
low complexity
jsish CWE-416
critical
 9.8
9.8
2021-07-13 CVE-2020-22873 Classic Buffer Overflow vulnerability in Jsish
Buffer overflow vulnerability in function NumberToPrecisionCmd in jsish before 3.0.7, allows remote attackers to execute arbitrary code.
network
low complexity
jsish CWE-120
critical
 9.8
9.8
2021-07-13 CVE-2020-22874 Integer Overflow or Wraparound vulnerability in Jsish
Integer overflow vulnerability in function Jsi_ObjArraySizer in jsish before 3.0.8, allows remote attackers to execute arbitrary code.
network
low complexity
jsish CWE-190
critical
 9.8
9.8
2021-07-13 CVE-2020-22875 Integer Overflow or Wraparound vulnerability in Jsish
Integer overflow vulnerability in function Jsi_ObjSetLength in jsish before 3.0.6, allows remote attackers to execute arbitrary code.
network
low complexity
jsish CWE-190
critical
 9.8
9.8
2019-07-24 CVE-2019-1010177 Use After Free vulnerability in Jsish 2.4.702.047
Jsish 2.4.70 2.047 is affected by: Use After Free.
network
low complexity
jsish CWE-416
critical
 9.8
9.8