First published: Tue Jan 25 2022(Updated: )
Jsish v3.5.0 was discovered to contain a heap buffer overflow via jsiEvalCodeSub in src/jsiEval.c. This vulnerability can lead to a Denial of Service (DoS).
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Jsish Jsish | =3.5.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-46474 is a vulnerability found in Jsish v3.5.0 that allows a heap buffer overflow via the jsiEvalCodeSub function in src/jsiEval.c.
CVE-2021-46474 has a severity rating of medium with a CVSS score of 5.5.
The affected software is Jsish v3.5.0.
CVE-2021-46474 can lead to a Denial of Service (DoS) attack.
At the time of writing, there is no known fix for CVE-2021-46474. It is recommended to update to a patched version of Jsish when available.