Filtered by vendor Cesanta
Subscribe
Total
113 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2021-33439 | 1 Cesanta | 1 Mjs | 2024-02-28 | N/A | 5.5 MEDIUM |
| An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is Integer overflow in gc_compact_strings() in mjs.c. | |||||
| CVE-2021-33438 | 1 Cesanta | 1 Mjs | 2024-02-28 | N/A | 5.5 MEDIUM |
| An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is stack buffer overflow in json_parse_array() in mjs.c. | |||||
| CVE-2021-33448 | 1 Cesanta | 1 Mjs | 2024-02-28 | N/A | 5.5 MEDIUM |
| An issue was discovered in mjs(mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is stack buffer overflow at 0x7fffe9049390. | |||||
| CVE-2021-33445 | 1 Cesanta | 1 Mjs | 2024-02-28 | N/A | 5.5 MEDIUM |
| An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in mjs_string_char_code_at() in mjs.c. | |||||
| CVE-2021-33441 | 1 Cesanta | 1 Mjs | 2024-02-28 | N/A | 5.5 MEDIUM |
| An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in exec_expr() in mjs.c. | |||||
| CVE-2021-33443 | 1 Cesanta | 1 Mjs | 2024-02-28 | N/A | 5.5 MEDIUM |
| An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is stack buffer overflow in mjs_execute() in mjs.c. | |||||
| CVE-2021-33446 | 1 Cesanta | 1 Mjs | 2024-02-28 | N/A | 5.5 MEDIUM |
| An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in mjs_next() in mjs.c. | |||||
| CVE-2021-33447 | 1 Cesanta | 1 Mjs | 2024-02-28 | N/A | 5.5 MEDIUM |
| An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in mjs_print() in mjs.c. | |||||
| CVE-2021-33442 | 1 Cesanta | 1 Mjs | 2024-02-28 | N/A | 5.5 MEDIUM |
| An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in json_printf() in mjs.c. | |||||
| CVE-2021-33440 | 1 Cesanta | 1 Mjs | 2024-02-28 | N/A | 5.5 MEDIUM |
| An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in mjs_bcode_commit() in mjs.c. | |||||
| CVE-2021-33437 | 1 Cesanta | 1 Mjs | 2024-02-28 | N/A | 5.5 MEDIUM |
| An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There are memory leaks in frozen_cb() in mjs.c. | |||||
| CVE-2021-27425 | 1 Cesanta | 1 Mongoose Os | 2024-02-28 | 7.5 HIGH | 9.8 CRITICAL |
| Cesanta Software Mongoose-OS v2.17.0 is vulnerable to integer wrap-around in function mm_malloc. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution. | |||||
| CVE-2022-25299 | 1 Cesanta | 1 Mongoose | 2024-02-28 | 5.0 MEDIUM | 7.5 HIGH |
| This affects the package cesanta/mongoose before 7.6. The unsafe handling of file names during upload using mg_http_upload() method may enable attackers to write files to arbitrary locations outside the designated target folder. | |||||
| CVE-2021-46545 | 1 Cesanta | 1 Mjs | 2024-02-28 | 4.3 MEDIUM | 5.5 MEDIUM |
| Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via /lib/x86_64-linux-gnu/libc.so.6+0x4b44b. This vulnerability can lead to a Denial of Service (DoS). | |||||
| CVE-2021-46543 | 1 Cesanta | 1 Mjs | 2024-02-28 | 4.3 MEDIUM | 5.5 MEDIUM |
| Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via /lib/x86_64-linux-gnu/libc.so.6+0x18e810. This vulnerability can lead to a Denial of Service (DoS). | |||||
| CVE-2021-46530 | 1 Cesanta | 1 Mjs | 2024-02-28 | 4.3 MEDIUM | 5.5 MEDIUM |
| Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via mjs_execute at src/mjs_exec.c. This vulnerability can lead to a Denial of Service (DoS). | |||||
| CVE-2021-46508 | 1 Cesanta | 1 Mjs | 2024-02-28 | 4.3 MEDIUM | 5.5 MEDIUM |
| There is an Assertion `i < parts_cnt' failed at src/mjs_bcode.c in Cesanta MJS v2.20.0. | |||||
| CVE-2021-46526 | 1 Cesanta | 1 Mjs | 2024-02-28 | 6.8 MEDIUM | 7.8 HIGH |
| Cesanta MJS v2.20.0 was discovered to contain a global buffer overflow via snquote at src/mjs_json.c. | |||||
| CVE-2021-46535 | 1 Cesanta | 1 Mjs | 2024-02-28 | 4.3 MEDIUM | 5.5 MEDIUM |
| Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via /usr/local/bin/mjs+0xe533e. This vulnerability can lead to a Denial of Service (DoS). | |||||
| CVE-2021-46525 | 1 Cesanta | 1 Mjs | 2024-02-28 | 6.8 MEDIUM | 7.8 HIGH |
| Cesanta MJS v2.20.0 was discovered to contain a heap-use-after-free via mjs_apply at src/mjs_exec.c. | |||||