CyberSec.Space Logo
Back to CVE Browser

CVE-2021-33797

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0610%
EPSS Percentile6.36th
PublishedApr 17, 2023
Last ModifiedFeb 6, 2025

Vulnerability Description

Buffer-overflow in jsdtoa.c in Artifex MuJS in versions 1.0.1 to 1.1.1. An integer overflow happens when js_strtod() reads in floating point exponent, which leads to a buffer overflow in the pointer *d.

Affected Platforms (CPE)

πŸ“¦
Artifex

Mujs

>= 1.0.1 and <= 1.1.1

References & Advisories

πŸ”— https://github.com/ccxvii/mujs/commit/833b6f1672b4f2991a63c4d05318f0b84ef4d550
πŸ”— https://github.com/ccxvii/mujs/issues/148
πŸ”— https://github.com/ccxvii/mujs/commit/833b6f1672b4f2991a63c4d05318f0b84ef4d550
πŸ”— https://github.com/ccxvii/mujs/issues/148
πŸ”— https://github.com/ccxvii/mujs/issues/148

Related Vulnerabilities

CVE-2021-3379610.0

In MuJS before version 1.1.2, a use-after-free flaw in the regexp source property access may cause denial of service.

CVE-2021-450059.8

Artifex MuJS v1.1.3 was discovered to contain a heap buffer overflow which is caused by conflicting JumpList of nested try/finally...

CVE-2019-127989.8

An issue was discovered in Artifex MuJS 1.0.5. regcompx in regexp.c does not restrict regular expression program size, leading to ...

CVE-2019-114119.8

An issue was discovered in Artifex MuJS 1.0.5. The Number#toFixed() and numtostr implementations in jsnumber.c have a stack-based ...