Описание
Jerryscript 3.0.0(commit 1a2c047) was discovered to contain a heap-buffer-overflow via the component lexer_compare_identifier_to_chars at /jerry-core/parser/js/js-lexer.c.
Ссылки
- ExploitIssue TrackingPatch
- ExploitIssue TrackingPatch
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:jerryscript:jerryscript:3.0.0:*:*:*:*:*:*:*
EPSS
Процентиль: 23%
0.00076
Низкий
7.8 High
CVSS3
Дефекты
CWE-787
CWE-787
Связанные уязвимости
CVSS3: 7.8
ubuntu
больше 2 лет назад
Jerryscript 3.0.0(commit 1a2c047) was discovered to contain a heap-buffer-overflow via the component lexer_compare_identifier_to_chars at /jerry-core/parser/js/js-lexer.c.
CVSS3: 7.8
debian
больше 2 лет назад
Jerryscript 3.0.0(commit 1a2c047) was discovered to contain a heap-buf ...
CVSS3: 7.8
github
больше 2 лет назад
Jerryscript 3.0.0(commit 1a2c047) was discovered to contain a heap-buffer-overflow via the component lexer_compare_identifier_to_chars at /jerry-core/parser/js/js-lexer.c.
EPSS
Процентиль: 23%
0.00076
Низкий
7.8 High
CVSS3
Дефекты
CWE-787
CWE-787