| CVE |
Vendors |
Products |
Updated |
CVSS |
| CVE-2019-1010162 |
1 Jsish |
1 Jsish |
2019-10-09 |
4.3 |
| jsish 2.4.74 2.0474 is affected by: CWE-476: NULL Pointer Dereference. The impact is: denial of service. The component is: function Jsi_StrcmpDict (jsiChar.c:121). The attack vector is: The victim must execute crafted javascript code. The fixed... |
| CVE-2019-1010177 |
1 Jsish |
1 Jsish |
2019-08-01 |
7.5 |
| Jsish 2.4.70 2.047 is affected by: Use After Free. The impact is: denial of service and possibly arbitrary code execution. The component is: function Jsi_RegExpNew (jsi/jsiRegexp.c:39). The attack vector is: executing crafted javascript code. The... |
| CVE-2019-1010172 |
1 Jsish |
1 Jsish |
2019-08-01 |
5.0 |
| Jsish 2.4.84 2.0484 is affected by: Uncontrolled Resource Consumption. The impact is: denial of service. The component is: function jsiValueGetString (jsiUtils.c). The attack vector is: executing crafted javascript code. The fixed version is:... |
| CVE-2019-1010170 |
1 Jsish |
1 Jsish |
2019-07-23 |
5.0 |
| Jsish 2.4.77 2.0477 is affected by: Use After Free. The impact is: denial of service. The component is: function Jsi_ObjFree (jsiObj.c:230). The attack vector is: executing crafted javascript code. The fixed version is: 2.4.78. |
| CVE-2019-1010169 |
1 Jsish |
1 Jsish |
2019-07-23 |
5.0 |
| Jsish 2.4.77 2.0477 is affected by: Out-of-bounds Read. The impact is: denial of service. The component is: function lexer_getchar (jsiLexer.c:9). The attack vector is: executing crafted javascript code. The fixed version is: 2.4.78. |
| CVE-2019-1010171 |
1 Jsish |
1 Jsish |
2019-07-23 |
5.0 |
| Jsish 2.4.83 2.0483 is affected by: Nullpointer dereference. The impact is: denial of service. The component is: function jsi_DumpFunctions (jsiEval.c:567). The attack vector is: executing crafted javascript code. The fixed version is: 2.4.84. |
| CVE-2019-1010173 |
1 Jsish |
1 Jsish |
2019-07-23 |
5.0 |
| Jsish 2.4.84 2.0484 is affected by: Reachable Assertion. The impact is: denial of service. The component is: function Jsi_ValueArrayIndex (jsiValue.c:366). The attack vector is: executing crafted javascript code. The fixed version is: after... |
| CVE-2018-1000661 |
1 Jsish |
1 Jsish |
2018-10-25 |
4.3 |
| jsish version 2.4.67 contains a CWE-476: NULL Pointer Dereference vulnerability in Jsi_LogMsg (jsiUtils.c:196) that can result in Crash due to segmentation fault. This attack appear to be exploitable via the victim executing specially crafted... |
| CVE-2018-1000663 |
1 Jsish |
1 Jsish |
2018-10-25 |
4.3 |
| jsish version 2.4.70 2.047 contains a Buffer Overflow vulnerability in function _jsi_evalcode from jsiEval.c that can result in Crash due to segmentation fault. This attack appear to be exploitable via The victim must execute crafted javascript code. |
| CVE-2018-1000655 |
1 Jsish |
1 Jsish |
2018-10-25 |
4.3 |
| Jsish version 2.4.65 contains a CWE-476: NULL Pointer Dereference vulnerability in Function jsi_ValueCopyMove from jsiValue.c:240 that can result in Crash due to segmentation fault. This attack appear to be exploitable via a crafted javascript... |
| CVE-2018-1000668 |
1 Jsish |
1 Jsish |
2018-10-25 |
4.3 |
| jsish version 2.4.70 2.047 contains a CWE-125: Out-of-bounds Read vulnerability in function jsi_ObjArrayLookup (jsiObj.c:274) that can result in Crash due to segmentation fault. This attack appear to be exploitable via The victim must execute... |
