Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Jsish Subscribe
Total 46 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-46500 1 Jsish 1 Jsish 2022-02-01 4.3 MEDIUM 5.5 MEDIUM
Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_ArgTypeCheck in src/jsiFunc.c. This vulnerability can lead to a Denial of Service (DoS).
CVE-2021-46501 1 Jsish 1 Jsish 2022-02-01 4.3 MEDIUM 5.5 MEDIUM
Jsish v3.5.0 was discovered to contain a heap-use-after-free via SortSubCmd in src/jsiArray.c. This vulnerability can lead to a Denial of Service (DoS).
CVE-2021-46503 1 Jsish 1 Jsish 2022-02-01 4.3 MEDIUM 5.5 MEDIUM
Jsish v3.5.0 was discovered to contain a heap-use-after-free via /usr/lib/x86_64-linux-gnu/libasan.so.4+0x79732. This vulnerability can lead to a Denial of Service (DoS).
CVE-2021-46482 1 Jsish 1 Jsish 2022-01-27 6.8 MEDIUM 7.8 HIGH
Jsish v3.5.0 was discovered to contain a heap buffer overflow via NumberConstructor at src/jsiNumber.c.
CVE-2021-46483 1 Jsish 1 Jsish 2022-01-27 6.8 MEDIUM 7.8 HIGH
Jsish v3.5.0 was discovered to contain a heap buffer overflow via BooleanConstructor at src/jsiBool.c.
CVE-2021-46478 1 Jsish 1 Jsish 2022-01-27 4.3 MEDIUM 5.5 MEDIUM
Jsish v3.5.0 was discovered to contain a heap buffer overflow via jsiClearStack in src/jsiEval.c. This vulnerability can lead to a Denial of Service (DoS).
CVE-2021-46480 1 Jsish 1 Jsish 2022-01-27 4.3 MEDIUM 5.5 MEDIUM
Jsish v3.5.0 was discovered to contain a heap buffer overflow via jsiValueObjDelete in src/jsiEval.c. This vulnerability can lead to a Denial of Service (DoS).
CVE-2021-46481 1 Jsish 1 Jsish 2022-01-27 4.3 MEDIUM 5.5 MEDIUM
Jsish v3.5.0 was discovered to contain a memory leak via linenoise at src/linenoise.c.
CVE-2021-46474 1 Jsish 1 Jsish 2022-01-27 4.3 MEDIUM 5.5 MEDIUM
Jsish v3.5.0 was discovered to contain a heap buffer overflow via jsiEvalCodeSub in src/jsiEval.c. This vulnerability can lead to a Denial of Service (DoS).
CVE-2021-46475 1 Jsish 1 Jsish 2022-01-27 4.3 MEDIUM 5.5 MEDIUM
Jsish v3.5.0 was discovered to contain a heap buffer overflow via jsi_ArraySliceCmd in src/jsiArray.c. This vulnerability can lead to a Denial of Service (DoS).
CVE-2021-46477 1 Jsish 1 Jsish 2022-01-27 4.3 MEDIUM 5.5 MEDIUM
Jsish v3.5.0 was discovered to contain a heap buffer overflow via RegExp_constructor in src/jsiRegexp.c. This vulnerability can lead to a Denial of Service (DoS).
CVE-2020-22907 1 Jsish 1 Jsish 2021-07-15 5.0 MEDIUM 7.5 HIGH
Stack overflow vulnerability in function jsi_evalcode_sub in jsish before 3.0.18, allows remote attackers to cause a Denial of Service via a crafted value to the execute parameter.
CVE-2020-22875 1 Jsish 1 Jsish 2021-07-15 7.5 HIGH 9.8 CRITICAL
Integer overflow vulnerability in function Jsi_ObjSetLength in jsish before 3.0.6, allows remote attackers to execute arbitrary code.
CVE-2020-22874 1 Jsish 1 Jsish 2021-07-15 7.5 HIGH 9.8 CRITICAL
Integer overflow vulnerability in function Jsi_ObjArraySizer in jsish before 3.0.8, allows remote attackers to execute arbitrary code.
CVE-2020-22873 1 Jsish 1 Jsish 2021-07-15 7.5 HIGH 9.8 CRITICAL
Buffer overflow vulnerability in function NumberToPrecisionCmd in jsish before 3.0.7, allows remote attackers to execute arbitrary code.
CVE-2019-1010173 1 Jsish 1 Jsish 2020-08-24 5.0 MEDIUM 7.5 HIGH
Jsish 2.4.84 2.0484 is affected by: Reachable Assertion. The impact is: denial of service. The component is: function Jsi_ValueArrayIndex (jsiValue.c:366). The attack vector is: executing crafted javascript code. The fixed version is: after commit 738ead193aff380a7e3d7ffb8e11e446f76867f3.
CVE-2019-1010162 1 Jsish 1 Jsish 2019-10-09 4.3 MEDIUM 5.5 MEDIUM
jsish 2.4.74 2.0474 is affected by: CWE-476: NULL Pointer Dereference. The impact is: denial of service. The component is: function Jsi_StrcmpDict (jsiChar.c:121). The attack vector is: The victim must execute crafted javascript code. The fixed version is: 2.4.77.
CVE-2019-1010177 1 Jsish 1 Jsish 2019-08-01 7.5 HIGH 9.8 CRITICAL
Jsish 2.4.70 2.047 is affected by: Use After Free. The impact is: denial of service and possibly arbitrary code execution. The component is: function Jsi_RegExpNew (jsi/jsiRegexp.c:39). The attack vector is: executing crafted javascript code. The fixed version is: after commit 48a66c798d.
CVE-2019-1010172 1 Jsish 1 Jsish 2019-08-01 5.0 MEDIUM 7.5 HIGH
Jsish 2.4.84 2.0484 is affected by: Uncontrolled Resource Consumption. The impact is: denial of service. The component is: function jsiValueGetString (jsiUtils.c). The attack vector is: executing crafted javascript code. The fixed version is: after commit f3a8096e0ce44bbf36c1dcb6e603adf9c8670c39.
CVE-2019-1010170 1 Jsish 1 Jsish 2019-07-23 5.0 MEDIUM 7.5 HIGH
Jsish 2.4.77 2.0477 is affected by: Use After Free. The impact is: denial of service. The component is: function Jsi_ObjFree (jsiObj.c:230). The attack vector is: executing crafted javascript code. The fixed version is: 2.4.78.