CVE-2025-46688

Published: Apr 27, 2025Modified: May 30, 2025

8.4

Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.5 / Impact: 5.9

Source: NVD

Description

quickjs-ng through 0.9.0 has an incorrect size calculation in JS_ReadBigInt for a BigInt, leading to a heap-based buffer overflow. QuickJS before 2025-04-26 is also affected.

Affected (2)

Products: Quickjs Ng: Quickjs · Quickjs Project: Quickjs

1 product

1 product

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Quickjs Ng Quickjs	Up to 0.9.0
Quickjs Project Quickjs	Before 2025-04-26

Related CWEs

CWE-131

Incorrect Calculation of Buffer Size

The product does not correctly calculate the size to be used when allocating a buffer, which could lead to a buffer overflow.

References (7)

https://bellard.org/quickjs/Changelog

Source: cve@mitre.org

Product

https://github.com/bellard/quickjs/commit/1eb05e44fad89daafa8ee3eb74b8520b4a37ec9a

Source: cve@mitre.org

Patch

https://github.com/bellard/quickjs/issues/399

Source: cve@mitre.org

ExploitThird Party Advisory

https://github.com/quickjs-ng/quickjs/commit/28fa43d3ddff2c1ba91b6e3a788b2d7ba82d1465

Source: cve@mitre.org

Patch

https://github.com/quickjs-ng/quickjs/issues/1018

Source: cve@mitre.org

Third Party Advisory

https://github.com/quickjs-ng/quickjs/pull/1020

Source: cve@mitre.org

Patch

https://github.com/quickjs-ng/quickjs/issues/1018

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

Third Party Advisory

Timeline

No history available yet.