CVE-2018-11593

Published: May 31, 2018

Modified: Sep 16, 2024

PUBLISHED

Description

Espruino before 1.99 allows attackers to cause a denial of service (application crash) and potential Information Disclosure with a user crafted input file via a Buffer Overflow during syntax parsing because strncpy is misused in jslex.c.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/espruino/Espruino/files/2019228/eh_0.txt

x_refsource_MISC

https://github.com/espruino/Espruino/issues/1426

x_refsource_MISC

https://github.com/espruino/Espruino/commit/bed844f109b6c222816740555068de2e101e8018

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2018-11593

Description

Affected Products

References