CVE-2023-36201

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jul 7, 2023
Updated: Jul 13, 2023

Summary

CVE-2023-36201 is a vulnerability affecting JerryscriptProject's jerryscript version 3.0.0. This issue grants attackers the ability to extract sensitive information by crafting malicious scripts targeted at the arrays within the software. By manipulating script input, an adversary can bypass expected security restrictions, resulting in unauthorized data access. This vulnerability poses a significant risk, as it can lead to potential data breaches and other malicious activities. Users are advised to upgrade to a patched version of jerryscript as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share