Unrated severityNVD Advisory· Published Aug 13, 2020· Updated Aug 4, 2024
CVE-2020-24345
CVE-2020-24345
Description
JerryScript through 2.3.0 allows stack consumption via function a(){new new Proxy(a,{})}JSON.parse("[]",a). NOTE: the vendor states that the problem is the lack of the --stack-limit option
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- JerryScript/JerryScriptdescription
- Range: <=2.3.0
Patches
Vulnerability mechanics
References
1- github.com/jerryscript-project/jerryscript/issues/3977mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.