First published: Sat Mar 05 2022(Updated: )
Espruino 2v11 release was discovered to contain a stack buffer overflow via src/jsvar.c in jsvGetNextSibling.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Espruino Espruino | =2.11 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-25465 is a stack buffer overflow vulnerability in Espruino version 2.11.
CVE-2022-25465 has a severity score of 7.8 (high).
CVE-2022-25465 occurs due to a stack buffer overflow in src/jsvar.c while using the jsvGetNextSibling function in Espruino version 2.11.
Espruino version 2.11 is affected by CVE-2022-25465.
At the moment, there is no official fix available for CVE-2022-25465. It is recommended to follow the references provided for any updates.