CVE-2023-38961

Опубликовано: 21 авг. 2023

Источник: debian

EPSS Низкий

Описание

Buffer Overflwo vulnerability in JerryScript Project jerryscript v.3.0.0 allows a remote attacker to execute arbitrary code via the scanner_is_context_needed component in js-scanner-until.c.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
iotjs	removed			package
iotjs	ignored		buster	package

Примечания

https://github.com/jerryscript-project/jerryscript/issues/5092

EPSS

Процентиль: 92%

0.07864

Низкий

Связанные уязвимости

CVE-2023-38961

CVSS3: 9.8

ubuntu

больше 2 лет назад

Buffer Overflwo vulnerability in JerryScript Project jerryscript v.3.0.0 allows a remote attacker to execute arbitrary code via the scanner_is_context_needed component in js-scanner-until.c.

CVE-2023-38961

CVSS3: 9.8

nvd

больше 2 лет назад

Buffer Overflwo vulnerability in JerryScript Project jerryscript v.3.0.0 allows a remote attacker to execute arbitrary code via the scanner_is_context_needed component in js-scanner-until.c.

GHSA-9w63-m7q9-mjhm

CVSS3: 9.8

github

больше 2 лет назад

Buffer Overflwo vulnerability in JerryScript Project jerryscript v.3.0.0 allows a remote attacker to execute arbitrary code via the scanner_is_context_needed component in js-scanner-until.c.

EPSS

Процентиль: 92%

0.07864

Низкий