CVE-2022-22901

Published: Feb 17, 2022Modified: Nov 21, 2024

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

There is an Assertion in 'context_p->next_scanner_info_p->type == SCANNER_TYPE_FUNCTION' failed at parser_parse_function_arguments in /js/js-parser.c of JerryScript commit a6ab5e9.

Affected (1)

Products: Jerryscript: Jerryscript

Jerryscript

1 product

Jerryscript

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Jerryscript Jerryscript	All versions

Related CWEs

CWE-617

Reachable Assertion

The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.

References (6)

http://jerryscript.com

Source: cve@mitre.org

Not ApplicableURL Repurposed

https://github.com/jerryscript-project/jerryscript

Source: cve@mitre.org

ProductThird Party Advisory

https://github.com/jerryscript-project/jerryscript/issues/4916

Source: cve@mitre.org

ExploitIssue TrackingPatchThird Party Advisory

http://jerryscript.com

Source: af854a3a-2127-422b-91ae-364da2661108

Not ApplicableURL Repurposed

https://github.com/jerryscript-project/jerryscript

Source: af854a3a-2127-422b-91ae-364da2661108

ProductThird Party Advisory

https://github.com/jerryscript-project/jerryscript/issues/4916

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitIssue TrackingPatchThird Party Advisory

Timeline

No history available yet.