Jsish version 2.4.65 contains a CWE-476: NULL Pointer Dereference vulnerability in Function jsi_ValueCopyMove from jsiValue.c:240 that can result in Crash due to segmentation fault. This attack appear to be exploitable via a crafted javascript code. This vulnerability appears to have been fixed in 2.4.67.
References
Link | Resource |
---|---|
https://jsish.org/fossil/jsi/tktview/3b8f95574f2c9dddf5ffea71e0086b2e6f6dd71e | Exploit Vendor Advisory |
Configurations
Information
Published : 2018-08-20 12:31
Updated : 2018-10-25 07:38
NVD link : CVE-2018-1000655
Mitre link : CVE-2018-1000655
JSON object : View
CWE
CWE-476
NULL Pointer Dereference
Products Affected
jsish
- jsish