Описание
In XS 9.0.0 in Moddable SDK OS180329, there is a heap-based buffer overflow in fxBeginHost in xsAPI.c when called from fxRunDefine in xsRun.c, as demonstrated by crafted JavaScript code to xst.
Ссылки
- ExploitIssue TrackingThird Party Advisory
- ExploitIssue TrackingThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:moddable:moddable:os180329:*:*:*:*:*:*:*
cpe:2.3:a:moddable:xs:9.0.0:*:*:*:*:*:*:*
EPSS
Процентиль: 59%
0.00385
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-787
Связанные уязвимости
github
больше 3 лет назад
In XS 9.0.0 in Moddable SDK OS180329, there is a heap-based buffer overflow in fxBeginHost in xsAPI.c when called from fxRunDefine in xsRun.c, as demonstrated by crafted JavaScript code to xst.
EPSS
Процентиль: 59%
0.00385
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-787