Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_wswebsocketObjFree in src/jsiWebSocket.c. This vulnerability can lead to a Denial of Service (DoS).
References
Link | Resource |
---|---|
https://github.com/pcmacdon/jsish/issues/81 | Exploit Issue Tracking Third Party Advisory |
Configurations
Information
Published : 2022-01-27 13:15
Updated : 2022-02-01 16:41
NVD link : CVE-2021-46498
Mitre link : CVE-2021-46498
JSON object : View
CWE
CWE-416
Use After Free
Products Affected
jsish
- jsish