exploitDog

CVE-2023-48183

Опубликовано: 23 апр. 2024

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

QuickJS before c4cdd61 has a build_for_in_iterator NULL pointer dereference because of an erroneous lexical scope of "this" with eval.

Ссылки

https://github.com/bellard/quickjs/commit/c4cdd61a3ed284cd760faf6b00bbf0cb908da077
Patch
https://github.com/bellard/quickjs/issues/192
Exploit
Issue Tracking
https://github.com/bellard/quickjs/commit/c4cdd61a3ed284cd760faf6b00bbf0cb908da077
Patch
https://github.com/bellard/quickjs/issues/192
Exploit
Issue Tracking

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:quickjs_project:quickjs:*:*:*:*:*:*:*:*

Версия до 2023-12-09 (исключая)

EPSS

Процентиль: 17%

0.00053

Низкий

7.5 High

CVSS3

Дефекты

CWE-476

Связанные уязвимости

CVE-2023-48183

CVSS3: 7.5

ubuntu

почти 2 года назад

QuickJS before c4cdd61 has a build_for_in_iterator NULL pointer dereference because of an erroneous lexical scope of "this" with eval.

CVE-2023-48183

CVSS3: 7.5

debian

почти 2 года назад

QuickJS before c4cdd61 has a build_for_in_iterator NULL pointer derefe ...

GHSA-2c9q-jgx6-2qx7

CVSS3: 7.5

github

почти 2 года назад

QuickJS before c4cdd61 has a build_for_in_iterator NULL pointer dereference because of an erroneous lexical scope of "this" with eval.

EPSS

Процентиль: 17%

0.00053

Низкий

7.5 High

CVSS3

Дефекты

CWE-476