First published: Sat Mar 05 2022(Updated: )
Espruino 2v11.251 was discovered to contain a stack buffer overflow via src/jsvar.c in jsvNewFromString.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Espruino Espruino | =2.11.251 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-25044 is a vulnerability discovered in Espruino 2v11.251 that allows a stack buffer overflow via src/jsvar.c in jsvNewFromString.
CVE-2022-25044 has a severity rating of 7.8 (high).
Espruino version 2.11.251 is affected by CVE-2022-25044.
It is recommended to update to a patched version of Espruino that addresses the vulnerability.
More information about CVE-2022-25044 can be found at the following references: <a href='https://github.com/espruino/Espruino/commit/e069be2ecc5060ef47391716e4de94999595b260'>https://github.com/espruino/Espruino/commit/e069be2ecc5060ef47391716e4de94999595b260</a> and <a href='https://github.com/espruino/Espruino/issues/2142'>https://github.com/espruino/Espruino/issues/2142</a>.