Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
math.js before 3.17.0 had an arbitrary code execution in the JavaScript engine. Creating a typed function with JavaScript code in the name could result arbitrary execution.
CVSS Information
N/A
Vulnerability Type
对生成代码的控制不恰当(代码注入)
Vulnerability Title
Math.js JavaScript引擎安全漏洞
Vulnerability Description
Math.js是一款应用于JavaScript和Node.js的数学库,它支持符号计算,内置大量函数与常量。JavaScript engine是其中的一个JavaScript引擎。 Math.js 3.17.0之前的版本中的JavaScript引擎存在任意代码执行漏洞。攻击者可利用该漏洞执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A