Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Moddable Subscribe
Total 25 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-29368 1 Moddable 1 Moddable 2023-12-10 5.8 MEDIUM 7.1 HIGH
Moddable commit before 135aa9a4a6a9b49b60aa730ebc3bcc6247d75c45 was discovered to contain an out-of-bounds read via the function fxUint8Getter at /moddable/xs/sources/xsDataView.c.
CVE-2021-46328 1 Moddable 1 Moddable Sdk 2023-12-10 6.8 MEDIUM 7.8 HIGH
Moddable SDK v11.5.0 was discovered to contain a heap-buffer-overflow via the component __libc_start_main.
CVE-2021-46334 1 Moddable 1 Moddable Sdk 2023-12-10 6.8 MEDIUM 7.8 HIGH
Moddable SDK v11.5.0 was discovered to contain a stack buffer overflow via the component __interceptor_strcat.
CVE-2021-46331 1 Moddable 1 Moddable Sdk 2023-12-10 4.3 MEDIUM 5.5 MEDIUM
Moddable SDK v11.5.0 was discovered to contain a SEGV vulnerability via xs/sources/xsProxy.c in fxProxyGetPrototype.
CVE-2021-46330 1 Moddable 1 Moddable Sdk 2023-12-10 4.3 MEDIUM 5.5 MEDIUM
Moddable SDK v11.5.0 was discovered to contain a SEGV vulnerability via xs/sources/xsDataView.c in fx_ArrayBuffer_prototype_concat.
CVE-2021-29325 1 Moddable 1 Moddable 2023-12-10 6.8 MEDIUM 7.8 HIGH
OpenSource Moddable v10.5.0 was discovered to contain a heap buffer overflow in the fx_String_prototype_repeat function at /moddable/xs/sources/xsString.c.
CVE-2021-29329 1 Moddable 1 Moddable 2023-12-10 6.8 MEDIUM 7.8 HIGH
OpenSource Moddable v10.5.0 was discovered to contain a stack overflow in the fxBinaryExpressionNodeDistribute function at /moddable/xs/sources/xsTree.c.
CVE-2021-46329 1 Moddable 1 Moddable Sdk 2023-12-10 4.3 MEDIUM 5.5 MEDIUM
Moddable SDK v11.5.0 was discovered to contain a SEGV vulnerability via the component _fini.
CVE-2021-46326 1 Moddable 1 Moddable Sdk 2023-12-10 6.8 MEDIUM 7.8 HIGH
Moddable SDK v11.5.0 was discovered to contain a heap-buffer-overflow via the component __asan_memcpy.
CVE-2021-46335 1 Moddable 1 Moddable Sdk 2023-12-10 4.3 MEDIUM 5.5 MEDIUM
Moddable SDK v11.5.0 was discovered to contain a NULL pointer dereference in the component fx_Function_prototype_hasInstance.
CVE-2021-46332 1 Moddable 1 Moddable Sdk 2023-12-10 6.8 MEDIUM 7.8 HIGH
Moddable SDK v11.5.0 was discovered to contain a heap-buffer-overflow via xs/sources/xsDataView.c in fxUint8Getter.
CVE-2021-29323 1 Moddable 1 Moddable 2023-12-10 4.3 MEDIUM 5.5 MEDIUM
OpenSource Moddable v10.5.0 was discovered to contain a heap buffer overflow via the component /modules/network/wifi/esp/modwifi.c.
CVE-2021-29327 1 Moddable 1 Moddable 2023-12-10 6.8 MEDIUM 7.8 HIGH
OpenSource Moddable v10.5.0 was discovered to contain a heap buffer overflow in the fx_ArrayBuffer function at /moddable/xs/sources/xsDataView.c.
CVE-2021-29324 1 Moddable 1 Moddable 2023-12-10 6.8 MEDIUM 7.8 HIGH
OpenSource Moddable v10.5.0 was discovered to contain a stack overflow via the component /moddable/xs/sources/xsScript.c.
CVE-2021-29328 1 Moddable 1 Moddable 2023-12-10 5.8 MEDIUM 7.1 HIGH
OpenSource Moddable v10.5.0 was discovered to contain buffer over-read in the fxDebugThrow function at /moddable/xs/sources/xsDebug.c.
CVE-2021-46333 1 Moddable 1 Moddable Sdk 2023-12-10 4.3 MEDIUM 5.5 MEDIUM
Moddable SDK v11.5.0 was discovered to contain an invalid memory access vulnerability via the component __asan_memmove.
CVE-2021-29326 1 Moddable 1 Moddable 2023-12-10 6.8 MEDIUM 7.8 HIGH
OpenSource Moddable v10.5.0 was discovered to contain a heap buffer overflow in the fxIDToString function at /moddable/xs/sources/xsSymbol.c.
CVE-2021-46327 1 Moddable 1 Moddable Sdk 2023-12-10 4.3 MEDIUM 5.5 MEDIUM
Moddable SDK v11.5.0 was discovered to contain a SEGV vulnerability via xs/sources/xsArray.c in fx_Array_prototype_sort.
CVE-2020-22882 1 Moddable 1 Moddable 2023-12-10 5.0 MEDIUM 7.5 HIGH
Issue was discovered in the fxParserTree function in moddable, allows attackers to cause denial of service via a crafted payload. Fixed in commit 723816ab9b52f807180c99fc69c7d08cf6c6bd61.
CVE-2020-25465 1 Moddable 1 Moddable 2023-12-10 5.0 MEDIUM 7.5 HIGH
Null Pointer Dereference. in xObjectBindingFromExpression at moddable/xs/sources/xsSyntaxical.c:3419 in Moddable SDK before OS200908 causes a denial of service (SEGV).