CVE-2018-1000668

jsish version 2.4.70 2.047 contains a CWE-125: Out-of-bounds Read vulnerability in function jsi_ObjArrayLookup (jsiObj.c:274) that can result in Crash due to segmentation fault. This attack appear to be exploitable via The victim must execute crafted javascript code. This vulnerability appears to have been fixed in 2.4.71.

Published : 2018-09-06 17:29 Updated : 2018-10-25 14:37

4.3
CVSS Score More info
Score 4.3 / 10
4.3
Vendor Product Version URI
Jsish Jsish 2.4.70_2.047 cpe:/a:jsish:jsish:2.4.70_2.047
  1. Jsish (1) Search CVE
    1. Jsish (1) Search CVE
      1. 2.4.70_2.047

CWE

ID Name Description Links
CWE-125 Out-of-bounds Read The software reads data past the end, or before the beginning, of the intended buffer. CVE

History of changes

Date Event
2018-10-25 14:37
2018-09-06 17:29

New CVE