Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Jsish version 2.4.65 contains a CWE-476: NULL Pointer Dereference vulnerability in Function jsi_ValueCopyMove from jsiValue.c:240 that can result in Crash due to segmentation fault. This attack appear to be exploitable via a crafted javascript code. This vulnerability appears to have been fixed in 2.4.67.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Jsish 安全漏洞
Vulnerability Description
Jsish是一款使用C语言编写的、内置数据库的小型JavaScript解析器。 Jsish 2.4.65版本中的jsiValue.c文件的‘jsi_ValueCopyMove’函数存在安全漏洞。攻击者可借助特制的JavaScript代码利用该漏洞造成拒绝服务(空指针逆向引用和崩溃)。
CVSS Information
N/A
Vulnerability Type
N/A