漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
LibJS in Ladybird before f5a6704 mishandles the freeing of the vector that arguments_list references, leading to a use-after-free, and allowing remote attackers to execute arbitrary code via a crafted .js file. NOTE: the GitHub README says "Ladybird is in a pre-alpha state, and only suitable for use by developers."
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
缺失同步机制
Vulnerability Title
Ladybird 安全漏洞
Vulnerability Description
Ladybird是Ladybird开源的一个真正独立的网络浏览器。 Ladybird f5a6704之前版本存在安全漏洞,该漏洞源于arguments_list引用的向量释放不当,可能导致释放后重用和任意代码执行。
CVSS Information
N/A
Vulnerability Type
N/A