Vulnerabilities > Jsish > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-01-25 CVE-2021-46483 Out-of-bounds Write vulnerability in Jsish 3.5.0
Jsish v3.5.0 was discovered to contain a heap buffer overflow via BooleanConstructor at src/jsiBool.c.
network
jsish CWE-787
6.8
6.8
2021-07-13 CVE-2020-22907 Out-of-bounds Write vulnerability in Jsish
Stack overflow vulnerability in function jsi_evalcode_sub in jsish before 3.0.18, allows remote attackers to cause a Denial of Service via a crafted value to the execute parameter.
network
low complexity
jsish CWE-787
5.0
5.0
2019-07-25 CVE-2019-1010172 Resource Exhaustion vulnerability in Jsish 2.4.842.0484
Jsish 2.4.84 2.0484 is affected by: Uncontrolled Resource Consumption.
network
low complexity
jsish CWE-400
5.0
5.0
2019-07-23 CVE-2019-1010173 Reachable Assertion vulnerability in Jsish 2.4.842.0484
Jsish 2.4.84 2.0484 is affected by: Reachable Assertion.
network
low complexity
jsish CWE-617
5.0
5.0
2019-07-23 CVE-2019-1010171 NULL Pointer Dereference vulnerability in Jsish 2.4.832.0483
Jsish 2.4.83 2.0483 is affected by: Nullpointer dereference.
network
low complexity
jsish CWE-476
5.0
5.0
2019-07-23 CVE-2019-1010170 Use After Free vulnerability in Jsish 2.4.772.0477
Jsish 2.4.77 2.0477 is affected by: Use After Free.
network
low complexity
jsish CWE-416
5.0
5.0
2019-07-23 CVE-2019-1010169 Out-of-bounds Read vulnerability in Jsish 2.4.772.0477
Jsish 2.4.77 2.0477 is affected by: Out-of-bounds Read.
network
low complexity
jsish CWE-125
5.0
5.0
2019-07-23 CVE-2019-1010162 NULL Pointer Dereference vulnerability in Jsish 2.4.772.0477
jsish 2.4.74 2.0474 is affected by: CWE-476: NULL Pointer Dereference.
network
jsish CWE-476
4.3
4.3
2018-09-06 CVE-2018-1000668 Out-of-bounds Read vulnerability in Jsish 2.4.702.047
jsish version 2.4.70 2.047 contains a CWE-125: Out-of-bounds Read vulnerability in function jsi_ObjArrayLookup (jsiObj.c:274) that can result in Crash due to segmentation fault.
network
jsish CWE-125
4.3
4.3
2018-09-06 CVE-2018-1000663 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Jsish 2.4.702.047
jsish version 2.4.70 2.047 contains a Buffer Overflow vulnerability in function _jsi_evalcode from jsiEval.c that can result in Crash due to segmentation fault.
network
jsish CWE-119
4.3
4.3