Wind River Support Network

HomeCVE Database

The Common Vulnerabilities and Exposures (CVE) project, maintained by the MITRE Corporation, is a list of all standardized names for vulnerabilities and security exposures.

Reset
Showing
of 171518 entries
IDDescriptionPriorityModified date
CVE-2021-46482 Jsish v3.5.0 was discovered to contain a heap buffer overflow via NumberConstructor at src/jsiNumber.c. MEDIUM Jan 27, 2022
CVE-2021-46483 Jsish v3.5.0 was discovered to contain a heap buffer overflow via BooleanConstructor at src/jsiBool.c. MEDIUM Jan 27, 2022
CVE-2021-46484 Jsish v3.5.0 was discovered to contain a heap-use-after-free via Jsi_IncrRefCount in src/jsiValue.c. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Feb 2, 2022
CVE-2021-46485 Jsish v3.5.0 was discovered to contain a SEGV vulnerability via Jsi_ValueIsNumber at src/jsiValue.c. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Feb 2, 2022
CVE-2021-46486 Jsish v3.5.0 was discovered to contain a SEGV vulnerability via jsi_ArraySpliceCmd at src/jsiArray.c. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Feb 2, 2022
CVE-2021-46487 Jsish v3.5.0 was discovered to contain a SEGV vulnerability via /lib/x86_64-linux-gnu/libc.so.6+0x18e506. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Feb 2, 2022
CVE-2021-46488 Jsish v3.5.0 was discovered to contain a SEGV vulnerability via jsi_ArrayConcatCmd at src/jsiArray.c. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Feb 2, 2022
CVE-2021-46489 Jsish v3.5.0 was discovered to contain a heap-use-after-free via Jsi_DecrRefCount in src/jsiValue.c. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Feb 2, 2022
CVE-2021-46490 Jsish v3.5.0 was discovered to contain a SEGV vulnerability via NumberConstructor at src/jsiNumber.c. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Feb 2, 2022
CVE-2021-46491 Jsish v3.5.0 was discovered to contain a SEGV vulnerability via Jsi_CommandPkgOpts at src/jsiCmds.c. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Feb 2, 2022
CVE-2021-46492 Jsish v3.5.0 was discovered to contain a SEGV vulnerability via Jsi_FunctionInvoke at src/jsiFunc.c. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Feb 2, 2022
CVE-2021-46494 Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_ValueLookupBase in src/jsiValue.c. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Feb 2, 2022
CVE-2021-46495 Jsish v3.5.0 was discovered to contain a heap-use-after-free via DeleteTreeValue in src/jsiObj.c. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Feb 2, 2022
CVE-2021-46496 Jsish v3.5.0 was discovered to contain a heap-use-after-free via Jsi_ObjFree in src/jsiObj.c. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Feb 2, 2022
CVE-2021-46497 Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_UserObjDelete in src/jsiUserObj.c. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Feb 2, 2022
CVE-2021-46498 Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_wswebsocketObjFree in src/jsiWebSocket.c. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Feb 2, 2022
CVE-2021-46499 Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_ValueCopyMove in src/jsiValue.c. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Feb 2, 2022
CVE-2021-46500 Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_ArgTypeCheck in src/jsiFunc.c. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Feb 2, 2022
CVE-2021-46501 Jsish v3.5.0 was discovered to contain a heap-use-after-free via SortSubCmd in src/jsiArray.c. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Feb 2, 2022
CVE-2021-46502 Jsish v3.5.0 was discovered to contain a heap-use-after-free via /usr/lib/x86_64-linux-gnu/libasan.so.4+0x5166d. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Feb 2, 2022
CVE-2021-46503 Jsish v3.5.0 was discovered to contain a heap-use-after-free via /usr/lib/x86_64-linux-gnu/libasan.so.4+0x79732. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Feb 2, 2022
CVE-2021-46504 There is an Assertion \'vp != resPtr\' failed at jsiEval.c in Jsish v3.5.0. MEDIUM Feb 2, 2022
CVE-2021-46505 Jsish v3.5.0 was discovered to contain a stack overflow via /usr/lib/x86_64-linux-gnu/libasan.so.4+0x5b1e5. MEDIUM Feb 2, 2022
CVE-2021-46506 There is an Assertion \'v->d.lval != v\' failed at src/jsiValue.c in Jsish v3.5.0. MEDIUM Feb 3, 2022
CVE-2021-46507 Jsish v3.5.0 was discovered to contain a stack overflow via Jsi_LogMsg at src/jsiUtils.c. MEDIUM Feb 2, 2022
CVE-2021-46508 There is an Assertion `i < parts_cnt\' failed at src/mjs_bcode.c in Cesanta MJS v2.20.0. MEDIUM Feb 2, 2022
CVE-2021-46509 Cesanta MJS v2.20.0 was discovered to contain a stack overflow via snquote at mjs/src/mjs_json.c. MEDIUM Feb 1, 2022
CVE-2021-46510 There is an Assertion `s < mjs->owned_strings.buf + mjs->owned_strings.len\' failed at src/mjs_gc.c in Cesanta MJS v2.20.0. MEDIUM Feb 3, 2022
CVE-2021-46511 There is an Assertion `m->len >= sizeof(v)\' failed at src/mjs_core.c in Cesanta MJS v2.20.0. MEDIUM Feb 2, 2022
CVE-2021-46512 Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via mjs_apply at src/mjs_exec.c. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Feb 1, 2022
CVE-2021-46513 Cesanta MJS v2.20.0 was discovered to contain a global buffer overflow via mjs_mk_string at mjs/src/mjs_string.c. MEDIUM Feb 1, 2022
CVE-2021-46514 There is an Assertion \'ppos != NULL && mjs_is_number(*ppos)\' failed at src/mjs_core.c in Cesanta MJS v2.20.0. MEDIUM Feb 2, 2022
CVE-2021-46515 There is an Assertion `mjs_stack_size(&mjs->scopes) >= scopes_len\' failed at src/mjs_exec.c in Cesanta MJS v2.20.0. MEDIUM Feb 2, 2022
CVE-2021-46516 Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via mjs_stack_size at mjs/src/mjs_core.c. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Feb 1, 2022
CVE-2021-46517 There is an Assertion `mjs_stack_size(&mjs->scopes) > 0\' failed at src/mjs_exec.c in Cesanta MJS v2.20.0. MEDIUM Feb 2, 2022
CVE-2021-46518 Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow via mjs_disown at src/mjs_core.c. MEDIUM Feb 1, 2022
CVE-2021-46519 Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow via mjs_array_length at src/mjs_array.c. MEDIUM Feb 1, 2022
CVE-2021-46520 Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow via mjs_jprintf at src/mjs_util.c. MEDIUM Feb 1, 2022
CVE-2021-46521 Cesanta MJS v2.20.0 was discovered to contain a global buffer overflow via c_vsnprintf at mjs/src/common/str_util.c. MEDIUM Feb 1, 2022
CVE-2021-46522 Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow via /usr/lib/x86_64-linux-gnu/libasan.so.4+0xaff53. MEDIUM Feb 1, 2022
CVE-2021-46523 Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow via to_json_or_debug at mjs/src/mjs_json.c. MEDIUM Feb 1, 2022
CVE-2021-46524 Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow via snquote at mjs/src/mjs_json.c. MEDIUM Feb 1, 2022
CVE-2021-46525 Cesanta MJS v2.20.0 was discovered to contain a heap-use-after-free via mjs_apply at src/mjs_exec.c. MEDIUM Feb 1, 2022
CVE-2021-46526 Cesanta MJS v2.20.0 was discovered to contain a global buffer overflow via snquote at src/mjs_json.c. MEDIUM Feb 1, 2022
CVE-2021-46527 Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow via mjs_get_cstring at src/mjs_string.c. MEDIUM Feb 1, 2022
CVE-2021-46528 Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via /usr/local/bin/mjs+0x5361e. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Feb 1, 2022
CVE-2021-46529 Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via /usr/local/bin/mjs+0x8814e. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Feb 1, 2022
CVE-2021-46530 Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via mjs_execute at src/mjs_exec.c. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Jan 31, 2022
CVE-2021-46531 Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via /usr/local/bin/mjs+0x8d28e. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Jan 31, 2022
CVE-2021-46532 Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via exec_expr at src/mjs_exec.c. This vulnerability can lead to a Denial of Service (DoS). MEDIUM Jan 31, 2022
The 'Fixed Release' column is displayed if a single product version is selected from the filter. The fixed release is applicable in cases when the CVE has been addressed and fixed for that product version. Requires LTSS - customers must have active LTSS (Long Term Security Shield) Support to receive up-to-date information about vulnerabilities that may affect legacy software. Please contact your Wind River account team or see https://docs.windriver.com/bundle/Support_and_Maintenance_Supplemental_Terms_and_Conditions and https://support2.windriver.com/index.php?page=plc for more information.
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube