Jerryscript

jerryscript

Vendor: Jerryscript • 98 CVEs

CVEs (98)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-33260 1Jerryscript 1Jerryscript Sep 22, 2025 Apr 26, 2024 N/A· v4 5.1 MEDIUM· v3 N/A· v2 Jerryscript commit cefd391 was discovered to contain a segmentation violation via the component parser_parse_class at jerry-core/parser/js/js-parser-expr.c
CVE-2024-33259 1Jerryscript 1Jerryscript Sep 22, 2025 Apr 26, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Jerryscript commit cefd391 was discovered to contain a segmentation violation via the component scanner_seek at jerry-core/parser/js/js-scanner-util.c.
CVE-2024-33258 1Jerryscript 1Jerryscript Sep 22, 2025 Apr 26, 2024 N/A· v4 7.1 HIGH· v3 N/A· v2 Jerryscript commit ff9ff8f was discovered to contain a segmentation violation via the component vm_loop at jerry-core/vm/vm.c.
CVE-2024-33255 1Jerryscript 1Jerryscript Sep 22, 2025 Apr 26, 2024 N/A· v4 6.2 MEDIUM· v3 N/A· v2 Jerryscript commit cefd391 was discovered to contain an Assertion Failure via ECMA_STRING_IS_REF_EQUALS_TO_ONE (string_p) in ecma_free_string_list.
CVE-2024-29489 1Jerryscript 1Jerryscript Sep 22, 2025 Mar 28, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Jerryscript 2.4.0 has SEGV at ./jerry-core/ecma/base/ecma-helpers.c:238:58 in ecma_get_object_type.
CVE-2023-36109 1Jerryscript 1Jerryscript Nov 21, 2024 Sep 20, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Buffer Overflow vulnerability in JerryScript version 3.0, allows remote attackers to execute arbitrary code via ecma_stringbuilder_append_raw component at /jerry-core/ecma/base/ecma-helpers-string.c.
CVE-2023-38961 1Jerryscript 1Jerryscript Nov 21, 2024 Aug 21, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Buffer Overflwo vulnerability in JerryScript Project jerryscript v.3.0.0 allows a remote attacker to execute arbitrary code via the scanner_is_context_needed component in js-scanner-until.c.
CVE-2020-24187 1Jerryscript 1Jerryscript Nov 21, 2024 Aug 11, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 An issue was discovered in ecma-helpers.c in jerryscript version 2.3.0, allows local attackers to cause a denial of service (DoS) (Null Pointer Dereference).
CVE-2023-36201 1Jerryscript 1Jerryscript Nov 21, 2024 Jul 7, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 An issue in JerryscriptProject jerryscript v.3.0.0 allows an attacker to obtain sensitive information via a crafted script to the arrays.
CVE-2020-22597 1Jerryscript 1Jerryscript Nov 21, 2024 Jul 3, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An issue in Jerrscript- project Jerryscrip v. 2.3.0 allows a remote attacker to execute arbitrary code via the ecma_builtin_array_prototype_object_slice parameter.
CVE-2023-34868 1Jerryscript 1Jerryscript Jan 2, 2025 Jun 14, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the parser_parse_for_statement_start at jerry-core/parser/js/js-parser-statm.c.
CVE-2023-34867 1Jerryscript 1Jerryscript Jan 3, 2025 Jun 14, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the ecma_property_hashmap_create at jerry-core/ecma/base/ecma-property-hashmap.c.
CVE-2023-31921 1Jerryscript 1Jerryscript Jan 24, 2025 May 12, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the ecma_big_uint_div_mod at jerry-core/ecma/operations/ecma-big-uint.c.
CVE-2023-31920 1Jerryscript 1Jerryscript Jan 24, 2025 May 12, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the vm_loop at jerry-core/vm/vm.c.
CVE-2023-31919 1Jerryscript 1Jerryscript Jan 24, 2025 May 12, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the jcontext_raise_exception at jerry-core/jcontext/jcontext.c.
CVE-2023-31918 1Jerryscript 1Jerryscript Jan 24, 2025 May 12, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Jerryscript 3.0 (commit 1a2c047) was discovered to contain an Assertion Failure via the parser_parse_function_arguments at jerry-core/parser/js/js-parser.c.
CVE-2023-31916 1Jerryscript 1Jerryscript Jan 24, 2025 May 12, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Jerryscript 3.0 (commit 1a2c047) was discovered to contain an Assertion Failure via the jmem_heap_finalize at jerry-core/jmem/jmem-heap.c.
CVE-2023-31914 1Jerryscript 1Jerryscript Jan 24, 2025 May 12, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Jerryscript 3.0 (commit 05dbbd1) was discovered to contain out-of-memory issue in malloc.
CVE-2023-31913 1Jerryscript 1Jerryscript Jan 24, 2025 May 12, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Jerryscript 3.0 *commit 1a2c047) was discovered to contain an Assertion Failure via the component parser_parse_class at jerry-core/parser/js/js-parser-expr.c.
CVE-2023-31910 1Jerryscript 1Jerryscript Jan 28, 2025 May 10, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Jerryscript 3.0 (commit 05dbbd1) was discovered to contain a heap-buffer-overflow via the component parser_parse_function_statement at /jerry-core/parser/js/js-parser-statm.c.

12 3 4 5 Next