CVE-2021-41752

CRITICAL

Jerryscript <e1ce7dd - Buffer Overflow

Title source: llm

Description

Stack overflow vulnerability in Jerryscript before commit e1ce7dd7271288be8c0c8136eea9107df73a8ce2 on Oct 20, 2021 due to an unbounded recursive call to the new opt() function.

References (1)

[Exploit, Issue Tracking, Third Party Advisory] https://github.com/jerryscript-project/jerryscript/issues/4779

Scores

CVSS v3 9.8

EPSS 0.0039

EPSS Percentile 59.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-674

Status published

Products (1)

jerryscript/jerryscript < 2021-10-20

Published Apr 05, 2022

Tracked Since Feb 18, 2026