Filtered by vendor Cesanta
Subscribe
Total
117 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2023-30087 | 1 Cesanta | 1 Mjs | 2024-02-04 | N/A | 5.5 MEDIUM |
| Buffer Overflow vulnerability found in Cesanta MJS v.1.26 allows a local attacker to cause a denial of service via the mjs_mk_string function in mjs.c. | |||||
| CVE-2023-29571 | 1 Cesanta | 1 Mjs | 2024-02-04 | N/A | 5.5 MEDIUM |
| Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via gc_sweep at src/mjs_gc.c. This vulnerability can lead to a Denial of Service (DoS). | |||||
| CVE-2021-33437 | 1 Cesanta | 1 Mjs | 2024-02-04 | N/A | 5.5 MEDIUM |
| An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There are memory leaks in frozen_cb() in mjs.c. | |||||
| CVE-2021-33443 | 1 Cesanta | 1 Mjs | 2024-02-04 | N/A | 5.5 MEDIUM |
| An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is stack buffer overflow in mjs_execute() in mjs.c. | |||||
| CVE-2021-33447 | 1 Cesanta | 1 Mjs | 2024-02-04 | N/A | 5.5 MEDIUM |
| An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in mjs_print() in mjs.c. | |||||
| CVE-2021-33441 | 1 Cesanta | 1 Mjs | 2024-02-04 | N/A | 5.5 MEDIUM |
| An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in exec_expr() in mjs.c. | |||||
| CVE-2021-33446 | 1 Cesanta | 1 Mjs | 2024-02-04 | N/A | 5.5 MEDIUM |
| An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in mjs_next() in mjs.c. | |||||
| CVE-2021-33449 | 1 Cesanta | 1 Mjs | 2024-02-04 | N/A | 5.5 MEDIUM |
| An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in mjs_bcode_part_get_by_offset() in mjs.c. | |||||
| CVE-2021-33442 | 1 Cesanta | 1 Mjs | 2024-02-04 | N/A | 5.5 MEDIUM |
| An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in json_printf() in mjs.c. | |||||
| CVE-2021-33439 | 1 Cesanta | 1 Mjs | 2024-02-04 | N/A | 5.5 MEDIUM |
| An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is Integer overflow in gc_compact_strings() in mjs.c. | |||||
| CVE-2021-33440 | 1 Cesanta | 1 Mjs | 2024-02-04 | N/A | 5.5 MEDIUM |
| An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in mjs_bcode_commit() in mjs.c. | |||||
| CVE-2021-33448 | 1 Cesanta | 1 Mjs | 2024-02-04 | N/A | 5.5 MEDIUM |
| An issue was discovered in mjs(mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is stack buffer overflow at 0x7fffe9049390. | |||||
| CVE-2021-33444 | 1 Cesanta | 1 Mjs | 2024-02-04 | N/A | 5.5 MEDIUM |
| An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in getprop_builtin_foreign() in mjs.c. | |||||
| CVE-2021-33438 | 1 Cesanta | 1 Mjs | 2024-02-04 | N/A | 5.5 MEDIUM |
| An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is stack buffer overflow in json_parse_array() in mjs.c. | |||||
| CVE-2021-33445 | 1 Cesanta | 1 Mjs | 2024-02-04 | N/A | 5.5 MEDIUM |
| An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in mjs_string_char_code_at() in mjs.c. | |||||
| CVE-2021-27425 | 1 Cesanta | 1 Mongoose Os | 2024-02-04 | 7.5 HIGH | 9.8 CRITICAL |
| Cesanta Software Mongoose-OS v2.17.0 is vulnerable to integer wrap-around in function mm_malloc. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution. | |||||
| CVE-2022-25299 | 1 Cesanta | 1 Mongoose | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
| This affects the package cesanta/mongoose before 7.6. The unsafe handling of file names during upload using mg_http_upload() method may enable attackers to write files to arbitrary locations outside the designated target folder. | |||||
| CVE-2021-46538 | 1 Cesanta | 1 Mjs | 2024-02-04 | 4.3 MEDIUM | 5.5 MEDIUM |
| Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via gc_compact_strings at src/mjs_gc.c. This vulnerability can lead to a Denial of Service (DoS). | |||||
| CVE-2021-46511 | 1 Cesanta | 1 Mjs | 2024-02-04 | 4.3 MEDIUM | 5.5 MEDIUM |
| There is an Assertion `m->len >= sizeof(v)' failed at src/mjs_core.c in Cesanta MJS v2.20.0. | |||||
| CVE-2021-46535 | 1 Cesanta | 1 Mjs | 2024-02-04 | 4.3 MEDIUM | 5.5 MEDIUM |
| Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via /usr/local/bin/mjs+0xe533e. This vulnerability can lead to a Denial of Service (DoS). | |||||