Description

An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is stack buffer overflow in json_parse_array() in mjs.c.

Related CPE's

a

cesanta

mjs

Vulnerable

References

https://gist.github.com/Clingto/bb632c0c463f4b2c97e4f65f751c5e6d

Third Party Advisory

https://github.com/cesanta/mjs/issues/158

ExploitIssue TrackingPatchThird Party Advisory

Weaknesses

[email protected]

Primary
CWE-787

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

5.5 · Medium

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2022-07-26T13:15:08.630

2 years ago

Last modified

2022-07-28T16:43:09.900

2 years ago