How severe is CVE-2018-1000655?

CVE-2018-1000655 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2018-1000655

Name: jsish
Author: jsish

6.5MEDIUM

Jsish version 2.4.65 contains a CWE-476: NULL Pointer Dereference vulnerability in Function jsi_ValueCopyMove from jsiValue.c:240 that can result in Crash due to segmentation fault. This attack appear

Опубликовано: 8/20/2018Обновлено: 11/21/2024

Описание

Jsish version 2.4.65 contains a CWE-476: NULL Pointer Dereference vulnerability in Function jsi_ValueCopyMove from jsiValue.c:240 that can result in Crash due to segmentation fault. This attack appear to be exploitable via a crafted javascript code. This vulnerability appears to have been fixed in 2.4.67.

ИИ-АнализНа базе ИИ

Затронутые продукты

jsishjsish

2.4.65

Ссылки

https://jsish.org/fossil/jsi/tktview/3b8f95574f2c9dddf5ffea71e0086b2e6f6dd71e
ExploitVendor Advisory
https://jsish.org/fossil/jsi/tktview/3b8f95574f2c9dddf5ffea71e0086b2e6f6dd71e
ExploitVendor Advisory