Skip to main content
CVE-2022-25465 HIGH POC This Week

Espruino 2v11 release was discovered to contain a stack buffer overflow via src/jsvar.c in jsvGetNextSibling. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Espruino
NVD GitHub
CVSS 3.1
7.8
EPSS
0.7%
CVE-2022-25044 HIGH POC PATCH This Week

Espruino 2v11.251 was discovered to contain a stack buffer overflow via src/jsvar.c in jsvNewFromString. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Memory Corruption Buffer Overflow Espruino
NVD GitHub
CVSS 3.1
7.8
EPSS
0.9%
CVE-2022-24921 HIGH PATCH This Week

regexp.Compile in Go before 1.16.15 and 1.17.x before 1.17.8 allows stack exhaustion via a deeply nested expression. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Go Astra Trident Debian Linux
NVD
CVSS 3.1
7.5
EPSS
3.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy