VYPR
Medium severity6.5NVD Advisory· Published Sep 6, 2018· Updated Jun 17, 2026

CVE-2018-1000668

CVE-2018-1000668

Description

jsish version 2.4.70 2.047 contains a CWE-125: Out-of-bounds Read vulnerability in function jsi_ObjArrayLookup (jsiObj.c:274) that can result in Crash due to segmentation fault. This attack appear to be exploitable via The victim must execute crafted javascript code. This vulnerability appears to have been fixed in 2.4.71.

Affected products

2
  • Jsish/Jsishinferred2 versions
    <=2.4.70+ 1 more
    • (no CPE)range: <=2.4.70
    • (no CPE)range: 2.4.70 2.047

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.