CVE-2020-22884: Buffer Overflow
First published: Tue Jul 13 2021(Updated: )
Buffer overflow vulnerability in function jsvGetStringChars in Espruino before RELEASE_2V09, allows remote attackers to execute arbitrary code.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Espruino Espruino | <2.09 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2020-22884.
What is the severity of CVE-2020-22884?
CVE-2020-22884 has a severity rating of critical (9.8).
Which software versions are affected by CVE-2020-22884?
Versions of Espruino before RELEASE_2V09 are affected by CVE-2020-22884.
How can remote attackers exploit CVE-2020-22884?
Remote attackers can exploit CVE-2020-22884 to execute arbitrary code.
Is there a fix available for CVE-2020-22884?
Yes, a fix is available in Espruino RELEASE_2V09 and later versions.
- collector/nvd-index
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/type
- agent/description
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/espruino
- canonical/espruino espruino