Vulnerabilities > Moddable > High

DATE CVE VULNERABILITY TITLE RISK
2022-05-12 CVE-2022-29368 Out-of-bounds Read vulnerability in Moddable
Moddable commit before 135aa9a4a6a9b49b60aa730ebc3bcc6247d75c45 was discovered to contain an out-of-bounds read via the function fxUint8Getter at /moddable/xs/sources/xsDataView.c.
local
low complexity
moddable CWE-125
7.1
7.1
2022-01-20 CVE-2021-46326 Out-of-bounds Write vulnerability in Moddable SDK 11.5.0
Moddable SDK v11.5.0 was discovered to contain a heap-buffer-overflow via the component __asan_memcpy.
local
low complexity
moddable CWE-787
7.8
7.8
2022-01-20 CVE-2021-46328 Out-of-bounds Write vulnerability in Moddable SDK 11.5.0
Moddable SDK v11.5.0 was discovered to contain a heap-buffer-overflow via the component __libc_start_main.
local
low complexity
moddable CWE-787
7.8
7.8
2022-01-20 CVE-2021-46332 Out-of-bounds Write vulnerability in Moddable SDK 11.5.0
Moddable SDK v11.5.0 was discovered to contain a heap-buffer-overflow via xs/sources/xsDataView.c in fxUint8Getter.
local
low complexity
moddable CWE-787
7.8
7.8
2022-01-20 CVE-2021-46334 Out-of-bounds Write vulnerability in Moddable SDK 11.5.0
Moddable SDK v11.5.0 was discovered to contain a stack buffer overflow via the component __interceptor_strcat.
local
low complexity
moddable CWE-787
7.8
7.8
2021-11-19 CVE-2021-29324 Allocation of Resources Without Limits or Throttling vulnerability in Moddable 10.5.0
OpenSource Moddable v10.5.0 was discovered to contain a stack overflow via the component /moddable/xs/sources/xsScript.c.
local
low complexity
moddable CWE-770
7.8
7.8
2021-11-19 CVE-2021-29325 Out-of-bounds Write vulnerability in Moddable 10.5.0
OpenSource Moddable v10.5.0 was discovered to contain a heap buffer overflow in the fx_String_prototype_repeat function at /moddable/xs/sources/xsString.c.
local
low complexity
moddable CWE-787
7.8
7.8
2021-11-19 CVE-2021-29326 Out-of-bounds Write vulnerability in Moddable 10.5.0
OpenSource Moddable v10.5.0 was discovered to contain a heap buffer overflow in the fxIDToString function at /moddable/xs/sources/xsSymbol.c.
local
low complexity
moddable CWE-787
7.8
7.8
2021-11-19 CVE-2021-29327 Out-of-bounds Write vulnerability in Moddable 10.5.0
OpenSource Moddable v10.5.0 was discovered to contain a heap buffer overflow in the fx_ArrayBuffer function at /moddable/xs/sources/xsDataView.c.
local
low complexity
moddable CWE-787
7.8
7.8
2021-11-19 CVE-2021-29328 Out-of-bounds Read vulnerability in Moddable 10.5.0
OpenSource Moddable v10.5.0 was discovered to contain buffer over-read in the fxDebugThrow function at /moddable/xs/sources/xsDebug.c.
local
low complexity
moddable CWE-125
7.1
7.1