VYPR
Medium severity6.5NVD Advisory· Published Sep 6, 2018· Updated Jun 17, 2026

CVE-2018-1000661

CVE-2018-1000661

Description

jsish version 2.4.67 contains a CWE-476: NULL Pointer Dereference vulnerability in Jsi_LogMsg (jsiUtils.c:196) that can result in Crash due to segmentation fault. This attack appear to be exploitable via the victim executing specially crafted javascript code. This vulnerability appears to have been fixed in 2.4.69.

Affected products

2
  • Jsish/Jsishinferred2 versions
    <=2.4.68+ 1 more
    • (no CPE)range: <=2.4.68
    • (no CPE)range: <=2.4.67

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.