Vulnerabilities (CVE)

Filtered by vendor Cesanta Subscribe

Filtered by product Mjs

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 74 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2023-49553	1 Cesanta	1 Mjs	2024-01-09	N/A	7.5 HIGH
An issue in Cesanta mjs 2.20.0 allows a remote attacker to cause a denial of service via the mjs_destroy function in the msj.c file.
CVE-2023-49552	1 Cesanta	1 Mjs	2024-01-09	N/A	7.5 HIGH
An Out of Bounds Write in Cesanta mjs 2.20.0 allows a remote attacker to cause a denial of service via the mjs_op_json_stringify function in the msj.c file.
CVE-2023-49549	1 Cesanta	1 Mjs	2024-01-09	N/A	7.5 HIGH
An issue in Cesanta mjs 2.20.0 allows a remote attacker to cause a denial of service via the mjs_getretvalpos function in the msj.c file.
CVE-2023-49550	1 Cesanta	1 Mjs	2024-01-05	N/A	7.5 HIGH
An issue in Cesanta mjs 2.20.0 allows a remote attacker to cause a denial of service via the mjs+0x4ec508 component.
CVE-2023-49551	1 Cesanta	1 Mjs	2024-01-05	N/A	7.5 HIGH
An issue in Cesanta mjs 2.20.0 allows a remote attacker to cause a denial of service via the mjs_op_json_parse function in the msj.c file.
CVE-2023-50044	1 Cesanta	1 Mjs	2023-12-29	N/A	9.8 CRITICAL
Cesanta MJS 2.20.0 has a getprop_builtin_foreign out-of-bounds read if a Built-in API name occurs in a substring of an input string.
CVE-2021-33437	1 Cesanta	1 Mjs	2023-08-08	N/A	5.5 MEDIUM
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There are memory leaks in frozen_cb() in mjs.c.
CVE-2021-46509	1 Cesanta	1 Mjs	2023-08-08	6.8 MEDIUM	7.8 HIGH
Cesanta MJS v2.20.0 was discovered to contain a stack overflow via snquote at mjs/src/mjs_json.c.
CVE-2021-33448	1 Cesanta	1 Mjs	2022-07-28	N/A	5.5 MEDIUM
An issue was discovered in mjs(mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is stack buffer overflow at 0x7fffe9049390.
CVE-2021-33445	1 Cesanta	1 Mjs	2022-07-28	N/A	5.5 MEDIUM
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in mjs_string_char_code_at() in mjs.c.
CVE-2021-33447	1 Cesanta	1 Mjs	2022-07-28	N/A	5.5 MEDIUM
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in mjs_print() in mjs.c.
CVE-2021-33444	1 Cesanta	1 Mjs	2022-07-28	N/A	5.5 MEDIUM
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in getprop_builtin_foreign() in mjs.c.
CVE-2021-33446	1 Cesanta	1 Mjs	2022-07-28	N/A	5.5 MEDIUM
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in mjs_next() in mjs.c.
CVE-2021-33443	1 Cesanta	1 Mjs	2022-07-28	N/A	5.5 MEDIUM
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is stack buffer overflow in mjs_execute() in mjs.c.
CVE-2021-33440	1 Cesanta	1 Mjs	2022-07-28	N/A	5.5 MEDIUM
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in mjs_bcode_commit() in mjs.c.
CVE-2021-33442	1 Cesanta	1 Mjs	2022-07-28	N/A	5.5 MEDIUM
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in json_printf() in mjs.c.
CVE-2021-33441	1 Cesanta	1 Mjs	2022-07-28	N/A	5.5 MEDIUM
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in exec_expr() in mjs.c.
CVE-2021-33438	1 Cesanta	1 Mjs	2022-07-28	N/A	5.5 MEDIUM
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is stack buffer overflow in json_parse_array() in mjs.c.
CVE-2021-33439	1 Cesanta	1 Mjs	2022-07-28	N/A	5.5 MEDIUM
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is Integer overflow in gc_compact_strings() in mjs.c.
CVE-2021-33449	1 Cesanta	1 Mjs	2022-07-28	N/A	5.5 MEDIUM
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in mjs_bcode_part_get_by_offset() in mjs.c.
CVE-2020-18392	1 Cesanta	1 Mjs	2022-07-10	4.3 MEDIUM	5.5 MEDIUM
Stack overflow vulnerability in parse_array Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file.
CVE-2021-46510	1 Cesanta	1 Mjs	2022-02-03	4.3 MEDIUM	5.5 MEDIUM
There is an Assertion `s < mjs->owned_strings.buf + mjs->owned_strings.len' failed at src/mjs_gc.c in Cesanta MJS v2.20.0.
CVE-2021-46511	1 Cesanta	1 Mjs	2022-02-02	4.3 MEDIUM	5.5 MEDIUM
There is an Assertion `m->len >= sizeof(v)' failed at src/mjs_core.c in Cesanta MJS v2.20.0.
CVE-2021-46508	1 Cesanta	1 Mjs	2022-02-02	4.3 MEDIUM	5.5 MEDIUM
There is an Assertion `i < parts_cnt' failed at src/mjs_bcode.c in Cesanta MJS v2.20.0.
CVE-2021-46517	1 Cesanta	1 Mjs	2022-02-02	4.3 MEDIUM	5.5 MEDIUM
There is an Assertion `mjs_stack_size(&mjs->scopes) > 0' failed at src/mjs_exec.c in Cesanta MJS v2.20.0.
CVE-2021-46515	1 Cesanta	1 Mjs	2022-02-02	4.3 MEDIUM	5.5 MEDIUM
There is an Assertion `mjs_stack_size(&mjs->scopes) >= scopes_len' failed at src/mjs_exec.c in Cesanta MJS v2.20.0.
CVE-2021-46514	1 Cesanta	1 Mjs	2022-02-02	4.3 MEDIUM	5.5 MEDIUM
There is an Assertion 'ppos != NULL && mjs_is_number(*ppos)' failed at src/mjs_core.c in Cesanta MJS v2.20.0.
CVE-2021-46529	1 Cesanta	1 Mjs	2022-02-01	4.3 MEDIUM	5.5 MEDIUM
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via /usr/local/bin/mjs+0x8814e. This vulnerability can lead to a Denial of Service (DoS).
CVE-2021-46516	1 Cesanta	1 Mjs	2022-02-01	4.3 MEDIUM	5.5 MEDIUM
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via mjs_stack_size at mjs/src/mjs_core.c. This vulnerability can lead to a Denial of Service (DoS).
CVE-2021-46512	1 Cesanta	1 Mjs	2022-02-01	4.3 MEDIUM	5.5 MEDIUM
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via mjs_apply at src/mjs_exec.c. This vulnerability can lead to a Denial of Service (DoS).
CVE-2021-46513	1 Cesanta	1 Mjs	2022-02-01	6.8 MEDIUM	7.8 HIGH
Cesanta MJS v2.20.0 was discovered to contain a global buffer overflow via mjs_mk_string at mjs/src/mjs_string.c.
CVE-2021-46527	1 Cesanta	1 Mjs	2022-02-01	6.8 MEDIUM	7.8 HIGH
Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow via mjs_get_cstring at src/mjs_string.c.
CVE-2021-46528	1 Cesanta	1 Mjs	2022-02-01	4.3 MEDIUM	5.5 MEDIUM
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via /usr/local/bin/mjs+0x5361e. This vulnerability can lead to a Denial of Service (DoS).
CVE-2021-46525	1 Cesanta	1 Mjs	2022-02-01	6.8 MEDIUM	7.8 HIGH
Cesanta MJS v2.20.0 was discovered to contain a heap-use-after-free via mjs_apply at src/mjs_exec.c.
CVE-2021-46526	1 Cesanta	1 Mjs	2022-02-01	6.8 MEDIUM	7.8 HIGH
Cesanta MJS v2.20.0 was discovered to contain a global buffer overflow via snquote at src/mjs_json.c.
CVE-2021-46524	1 Cesanta	1 Mjs	2022-02-01	6.8 MEDIUM	7.8 HIGH
Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow via snquote at mjs/src/mjs_json.c.
CVE-2021-46523	1 Cesanta	1 Mjs	2022-02-01	6.8 MEDIUM	7.8 HIGH
Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow via to_json_or_debug at mjs/src/mjs_json.c.
CVE-2021-46522	1 Cesanta	1 Mjs	2022-02-01	6.8 MEDIUM	7.8 HIGH
Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow via /usr/lib/x86_64-linux-gnu/libasan.so.4+0xaff53.
CVE-2021-46521	1 Cesanta	1 Mjs	2022-02-01	6.8 MEDIUM	7.8 HIGH
Cesanta MJS v2.20.0 was discovered to contain a global buffer overflow via c_vsnprintf at mjs/src/common/str_util.c.
CVE-2021-46520	1 Cesanta	1 Mjs	2022-02-01	6.8 MEDIUM	7.8 HIGH
Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow via mjs_jprintf at src/mjs_util.c.
CVE-2021-46519	1 Cesanta	1 Mjs	2022-02-01	6.8 MEDIUM	7.8 HIGH
Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow via mjs_array_length at src/mjs_array.c.
CVE-2021-46518	1 Cesanta	1 Mjs	2022-02-01	6.8 MEDIUM	7.8 HIGH
Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow via mjs_disown at src/mjs_core.c.
CVE-2021-46530	1 Cesanta	1 Mjs	2022-01-31	4.3 MEDIUM	5.5 MEDIUM
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via mjs_execute at src/mjs_exec.c. This vulnerability can lead to a Denial of Service (DoS).
CVE-2021-46531	1 Cesanta	1 Mjs	2022-01-31	4.3 MEDIUM	5.5 MEDIUM
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via /usr/local/bin/mjs+0x8d28e. This vulnerability can lead to a Denial of Service (DoS).
CVE-2021-46532	1 Cesanta	1 Mjs	2022-01-31	4.3 MEDIUM	5.5 MEDIUM
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via exec_expr at src/mjs_exec.c. This vulnerability can lead to a Denial of Service (DoS).
CVE-2021-46535	1 Cesanta	1 Mjs	2022-01-31	4.3 MEDIUM	5.5 MEDIUM
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via /usr/local/bin/mjs+0xe533e. This vulnerability can lead to a Denial of Service (DoS).
CVE-2021-46534	1 Cesanta	1 Mjs	2022-01-31	4.3 MEDIUM	5.5 MEDIUM
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via getprop_builtin_foreign at src/mjs_exec.c. This vulnerability can lead to a Denial of Service (DoS).
CVE-2021-46537	1 Cesanta	1 Mjs	2022-01-31	4.3 MEDIUM	5.5 MEDIUM
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via /usr/local/bin/mjs+0x9a30e. This vulnerability can lead to a Denial of Service (DoS).
CVE-2021-46538	1 Cesanta	1 Mjs	2022-01-31	4.3 MEDIUM	5.5 MEDIUM
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via gc_compact_strings at src/mjs_gc.c. This vulnerability can lead to a Denial of Service (DoS).
CVE-2021-46539	1 Cesanta	1 Mjs	2022-01-31	4.3 MEDIUM	5.5 MEDIUM
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via /lib/x86_64-linux-gnu/libc.so.6+0x45a1f. This vulnerability can lead to a Denial of Service (DoS).