Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2026-0822

Опубликовано: 10 янв. 2026
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 7.5
CVSS3: 6.3

Описание

A vulnerability was identified in quickjs-ng quickjs up to 0.11.0. This issue affects the function js_typed_array_sort of the file quickjs.c. The manipulation leads to heap-based buffer overflow. Remote exploitation of the attack is possible. The exploit is publicly available and might be used. The identifier of the patch is 53eefbcd695165a3bd8c584813b472cb4a69fbf5. To fix this issue, it is recommended to deploy a patch.

РелизСтатусПримечание
devel

needed

esm-apps/noble

needed

jammy

DNE

noble

needed

plucky

ignored

end of life, was needs-triage
questing

needed

upstream

released

0.12.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 20%
0.00063
Низкий

7.5 High

CVSS2

6.3 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2026-0822

CVSS3: 6.3
redhat
3 месяца назад

A vulnerability was identified in quickjs-ng quickjs up to 0.11.0. This issue affects the function js_typed_array_sort of the file quickjs.c. The manipulation leads to heap-based buffer overflow. Remote exploitation of the attack is possible. The exploit is publicly available and might be used. The identifier of the patch is 53eefbcd695165a3bd8c584813b472cb4a69fbf5. To fix this issue, it is recommended to deploy a patch.

nvd логотип

CVE-2026-0822

CVSS3: 6.3
nvd
3 месяца назад

A vulnerability was identified in quickjs-ng quickjs up to 0.11.0. This issue affects the function js_typed_array_sort of the file quickjs.c. The manipulation leads to heap-based buffer overflow. Remote exploitation of the attack is possible. The exploit is publicly available and might be used. The identifier of the patch is 53eefbcd695165a3bd8c584813b472cb4a69fbf5. To fix this issue, it is recommended to deploy a patch.

debian логотип

CVE-2026-0822

CVSS3: 6.3
debian
3 месяца назад

A vulnerability was identified in quickjs-ng quickjs up to 0.11.0. Thi ...

github логотип

GHSA-67vh-536w-6pc4

CVSS3: 6.3
github
3 месяца назад

A vulnerability was identified in quickjs-ng quickjs up to 0.11.0. This issue affects the function js_typed_array_sort of the file quickjs.c. The manipulation leads to heap-based buffer overflow. Remote exploitation of the attack is possible. The exploit is publicly available and might be used. The identifier of the patch is 53eefbcd695165a3bd8c584813b472cb4a69fbf5. To fix this issue, it is recommended to deploy a patch.

EPSS

Процентиль: 20%
0.00063
Низкий

7.5 High

CVSS2

6.3 Medium

CVSS3