CVE-2019-1010162

EPSS 0.8%CWE-476

Vexday Risk Score

3Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS —EPSS 0.8%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

23 Jul 2019Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

jsish 2.4.74 2.0474 is affected by: CWE-476: NULL Pointer Dereference. The impact is: denial of service. The component is: function Jsi_StrcmpDict (jsiChar.c:121). The attack vector is: The victim must execute crafted javascript code. The fixed version is: 2.4.77.

Affected products

jsi · jsi

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://jsish.org/fossil/jsi/tktview/5533c4d665b9683eebe4d662493f15eb911d1c8f