CVE-2021-43453

Published
View on NVD ↗
CVSS v3
9.8
CRITICAL
CVSS v2
7.5
HIGH
Affected
1
PROJECT

Description

A Heap-based Buffer Overflow vulnerability exists in JerryScript 2.4.0 and prior versions via an out-of-bounds read in parser_parse_for_statement_start in the js-parser-statm.c file. This issue is similar to CVE-2020-29657.

jerryscript-project/jerryscript
jerryscript-project/jerryscript
Ultra-lightweight JavaScript engine for the Internet of Things.
GitHubGitHub
7.39K