CRITICAL🇵🇱 Wersja polska

CVE-2020-22597

CVSS 9.8v3.1pub. 2023-07-03upd. 2024-11-21

An issue in Jerrscript- project Jerryscrip v. 2.3.0 allows a remote attacker to execute arbitrary code via the ecma_builtin_array_prototype_object_slice parameter.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Jerryscript

    APP
    Jerryscript
    2.3.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2023-36109CRITICAL9.8ten sam produkt

Buffer Overflow vulnerability in JerryScript version 3.0, allows remote attackers to execute arbitrary code vi...

CVE-2023-38961CRITICAL9.8ten sam produkt

Buffer Overflwo vulnerability in JerryScript Project jerryscript v.3.0.0 allows a remote attacker to execute a...

CVE-2021-42863CRITICAL9.8ten sam produkt

A buffer overflow in ecma_builtin_typedarray_prototype_filter() in JerryScript version fe3a5c0 allows an attac...

CVE-2021-43453CRITICAL9.8ten sam produkt

A Heap-based Buffer Overflow vulnerability exists in JerryScript 2.4.0 and prior versions via an out-of-bounds...

CVE-2021-41752CRITICAL9.8ten sam produkt

Stack overflow vulnerability in Jerryscript before commit e1ce7dd7271288be8c0c8136eea9107df73a8ce2 on Oct 20, ...