Home/Product/jsish
Product

jsish

53 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-65570
all versions
A type confusion in jsish 2.0 allows incorrect control flow during execution of the OP_NEXT opcode. When an “instanceof” expre
9.8CRITICAL
 CVE-2024-24189
all versions
Jsish v3.5.0 (commit 42c694c) was discovered to contain a use-after-free via the SplitChar at ./src/jsiUtils.c.
9.8CRITICAL
 CVE-2024-24188
all versions
Jsish v3.5.0 was discovered to contain a heap-buffer-overflow in ./src/jsiUtils.c.
9.8CRITICAL
 CVE-2024-24186
all versions
Jsish v3.5.0 (commit 42c694c) was discovered to contain a stack-overflow via the component IterGetKeysCallback at /jsish/src/jsiVa
9.8CRITICAL
 CVE-2020-23260
<= 3.0.11
An issue found in Jsish v.3.0.11 and before allows an attacker to cause a denial of service via the StringReplaceCmd function in t
7.5HIGH
 CVE-2020-23259
<= 3.0.11
An issue found in Jsish v.3.0.11 and before allows an attacker to cause a denial of service via the Jsi_Strlen function in the src
7.5HIGH
 CVE-2020-23258
all versions
An issue found in Jsish v.3.0.11 allows a remote attacker to cause a denial of service via the Jsi_ValueIsNumber function in ./src
7.5HIGH
 CVE-2021-46507
all versions
Jsish v3.5.0 was discovered to contain a stack overflow via Jsi_LogMsg at src/jsiUtils.c.
5.5MEDIUM
 CVE-2021-46506
all versions
There is an Assertion 'v-d.lval != v' failed at src/jsiValue.c in Jsish v3.5.0.
5.5MEDIUM
 CVE-2021-46505
all versions
Jsish v3.5.0 was discovered to contain a stack overflow via /usr/lib/x86_64-linux-gnu/libasan.so.4+0x5b1e5.
5.5MEDIUM
 CVE-2021-46504
all versions
There is an Assertion 'vp != resPtr' failed at jsiEval.c in Jsish v3.5.0.
5.5MEDIUM
 CVE-2021-46503
all versions
Jsish v3.5.0 was discovered to contain a heap-use-after-free via /usr/lib/x86_64-linux-gnu/libasan.so.4+0x79732. This vulnerabilit
5.5MEDIUM
 CVE-2021-46502
all versions
Jsish v3.5.0 was discovered to contain a heap-use-after-free via /usr/lib/x86_64-linux-gnu/libasan.so.4+0x5166d. This vulnerabilit
5.5MEDIUM
 CVE-2021-46501
all versions
Jsish v3.5.0 was discovered to contain a heap-use-after-free via SortSubCmd in src/jsiArray.c. This vulnerability can lead to a De
5.5MEDIUM
 CVE-2021-46500
all versions
Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_ArgTypeCheck in src/jsiFunc.c. This vulnerability can lead to
5.5MEDIUM
 CVE-2021-46499
all versions
Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_ValueCopyMove in src/jsiValue.c. This vulnerability can lead
5.5MEDIUM
 CVE-2021-46498
all versions
Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_wswebsocketObjFree in src/jsiWebSocket.c. This vulnerability
5.5MEDIUM
 CVE-2021-46497
all versions
Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_UserObjDelete in src/jsiUserObj.c. This vulnerability can lea
5.5MEDIUM
 CVE-2021-46496
all versions
Jsish v3.5.0 was discovered to contain a heap-use-after-free via Jsi_ObjFree in src/jsiObj.c. This vulnerability can lead to a Den
5.5MEDIUM
 CVE-2021-46495
all versions
Jsish v3.5.0 was discovered to contain a heap-use-after-free via DeleteTreeValue in src/jsiObj.c. This vulnerability can lead to a
5.5MEDIUM
 CVE-2021-46494
all versions
Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_ValueLookupBase in src/jsiValue.c. This vulnerability can lea
5.5MEDIUM
 CVE-2021-46492
all versions
Jsish v3.5.0 was discovered to contain a SEGV vulnerability via Jsi_FunctionInvoke at src/jsiFunc.c. This vulnerability can lead t
5.5MEDIUM
 CVE-2021-46491
all versions
Jsish v3.5.0 was discovered to contain a SEGV vulnerability via Jsi_CommandPkgOpts at src/jsiCmds.c. This vulnerability can lead t
5.5MEDIUM
 CVE-2021-46490
all versions
Jsish v3.5.0 was discovered to contain a SEGV vulnerability via NumberConstructor at src/jsiNumber.c. This vulnerability can lead
5.5MEDIUM
 CVE-2021-46489
all versions
Jsish v3.5.0 was discovered to contain a heap-use-after-free via Jsi_DecrRefCount in src/jsiValue.c. This vulnerability can lead t
5.5MEDIUM
 CVE-2021-46488
all versions
Jsish v3.5.0 was discovered to contain a SEGV vulnerability via jsi_ArrayConcatCmd at src/jsiArray.c. This vulnerability can lead
5.5MEDIUM
 CVE-2021-46487
all versions
Jsish v3.5.0 was discovered to contain a SEGV vulnerability via /lib/x86_64-linux-gnu/libc.so.6+0x18e506. This vulnerability can l
5.5MEDIUM
 CVE-2021-46486
all versions
Jsish v3.5.0 was discovered to contain a SEGV vulnerability via jsi_ArraySpliceCmd at src/jsiArray.c. This vulnerability can lead
5.5MEDIUM
 CVE-2021-46485
all versions
Jsish v3.5.0 was discovered to contain a SEGV vulnerability via Jsi_ValueIsNumber at src/jsiValue.c. This vulnerability can lead t
5.5MEDIUM
 CVE-2021-46484
all versions
Jsish v3.5.0 was discovered to contain a heap-use-after-free via Jsi_IncrRefCount in src/jsiValue.c. This vulnerability can lead t
5.5MEDIUM
 CVE-2021-46483
all versions
Jsish v3.5.0 was discovered to contain a heap buffer overflow via BooleanConstructor at src/jsiBool.c.
7.8HIGH
 CVE-2021-46482
all versions
Jsish v3.5.0 was discovered to contain a heap buffer overflow via NumberConstructor at src/jsiNumber.c.
7.8HIGH
 CVE-2021-46481
all versions
Jsish v3.5.0 was discovered to contain a memory leak via linenoise at src/linenoise.c.
5.5MEDIUM
 CVE-2021-46480
all versions
Jsish v3.5.0 was discovered to contain a heap buffer overflow via jsiValueObjDelete in src/jsiEval.c. This vulnerability can lead
5.5MEDIUM
 CVE-2021-46478
all versions
Jsish v3.5.0 was discovered to contain a heap buffer overflow via jsiClearStack in src/jsiEval.c. This vulnerability can lead to a
5.5MEDIUM
 CVE-2021-46477
all versions
Jsish v3.5.0 was discovered to contain a heap buffer overflow via RegExp_constructor in src/jsiRegexp.c. This vulnerability can le
5.5MEDIUM
 CVE-2021-46475
all versions
Jsish v3.5.0 was discovered to contain a heap buffer overflow via jsi_ArraySliceCmd in src/jsiArray.c. This vulnerability can lead
5.5MEDIUM
 CVE-2021-46474
all versions
Jsish v3.5.0 was discovered to contain a heap buffer overflow via jsiEvalCodeSub in src/jsiEval.c. This vulnerability can lead to
5.5MEDIUM
 CVE-2020-22907
< 3.0.18
Stack overflow vulnerability in function jsi_evalcode_sub in jsish before 3.0.18, allows remote attackers to cause a Denial of Ser
7.5HIGH
 CVE-2020-22875
< 3.0.6
Integer overflow vulnerability in function Jsi_ObjSetLength in jsish before 3.0.6, allows remote attackers to execute arbitrary co
9.8CRITICAL
 CVE-2020-22874
< 3.0.8
Integer overflow vulnerability in function Jsi_ObjArraySizer in jsish before 3.0.8, allows remote attackers to execute arbitrary c
9.8CRITICAL
 CVE-2020-22873
< 3.0.7
Buffer overflow vulnerability in function NumberToPrecisionCmd in jsish before 3.0.7, allows remote attackers to execute arbitrary
9.8CRITICAL
 CVE-2019-1010172
all versions
Jsish 2.4.84 2.0484 is affected by: Uncontrolled Resource Consumption. The impact is: denial of service. The component is: functio
7.5HIGH
 CVE-2019-1010177
all versions
Jsish 2.4.70 2.047 is affected by: Use After Free. The impact is: denial of service and possibly arbitrary code execution. The com
9.8CRITICAL
 CVE-2019-1010173
all versions
Jsish 2.4.84 2.0484 is affected by: Reachable Assertion. The impact is: denial of service. The component is: function Jsi_ValueArr
7.5HIGH
 CVE-2019-1010171
all versions
Jsish 2.4.83 2.0483 is affected by: Nullpointer dereference. The impact is: denial of service. The component is: function jsi_Dump
7.5HIGH
 CVE-2019-1010170
all versions
Jsish 2.4.77 2.0477 is affected by: Use After Free. The impact is: denial of service. The component is: function Jsi_ObjFree (jsiO
7.5HIGH
 CVE-2019-1010169
all versions
Jsish 2.4.77 2.0477 is affected by: Out-of-bounds Read. The impact is: denial of service. The component is: function lexer_getchar
7.5HIGH
 CVE-2019-1010162
all versions
jsish 2.4.74 2.0474 is affected by: CWE-476: NULL Pointer Dereference. The impact is: denial of service. The component is: functio
5.5MEDIUM
 CVE-2018-1000668
all versions
jsish version 2.4.70 2.047 contains a CWE-125: Out-of-bounds Read vulnerability in function jsi_ObjArrayLookup (jsiObj.c:274) that
6.5MEDIUM
 CVE-2018-1000663
all versions
jsish version 2.4.70 2.047 contains a Buffer Overflow vulnerability in function _jsi_evalcode from jsiEval.c that can result in Cr
6.5MEDIUM
 CVE-2018-1000661
all versions
jsish version 2.4.67 contains a CWE-476: NULL Pointer Dereference vulnerability in Jsi_LogMsg (jsiUtils.c:196) that can result in
6.5MEDIUM
 CVE-2018-1000655
all versions
Jsish version 2.4.65 contains a CWE-476: NULL Pointer Dereference vulnerability in Function jsi_ValueCopyMove from jsiValue.c:240
6.5MEDIUM
SOC and Response
CVE triage
Stack monitoring
Am I affected
IOC triage
KEV catalog
Recently exploited
Daily brief
Change tracking
Detection Engineering
Coverage workspace
Detection coverage
Coverage check
Telemetry ceiling
SIEM query builder
Sigma rules
SIEM rules
YARA rules
Network rules
D3FEND
Threat Hunting
Threat actors
ATT&CK techniques
Attack paths
Indicators
Atomic tests
Red Team and Pentest
Exploitability triage
Recon pack
Attack paths
CAPEC patterns
Adversary emulation
Compliance and GRC
Framework mapping
Control assessment
Audit view
Atlas Search Threat actors Techniques Tools & malware CWE CAPEC KEV catalog Package vulns
About All capabilities Pricing API docs Live status Privacy policy Terms of service
threatengine.sh