Description
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is stack buffer overflow in json_parse_array() in mjs.c.
References
https://gist.github.com/Clingto/bb632c0c463f4b2c97e4f65f751c5e6d
Third Party Advisory
https://github.com/cesanta/mjs/issues/158
ExploitIssue TrackingPatchThird Party Advisory
CVSS impact metrics
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
5.5 · Medium
CVSS V3.1
CVSS V3.0
CVSS V2.0
Information
Source identifier
Vulnerability status
Analyzed
Published
2022-07-26T13:15:08.630
2 years agoLast modified
2022-07-28T16:43:09.900
2 years ago