βΌ CVE-2021-46342 βΌ
π Read
via "National Vulnerability Database".
There is an Assertion 'ecma_is_lexical_environment (obj_p) || !ecma_op_object_is_fast_array (obj_p)' failed at /jerry-core/ecma/base/ecma-helpers.c in JerryScript 3.0.0.π Read
via "National Vulnerability Database".
βΌ CVE-2021-46328 βΌ
π Read
via "National Vulnerability Database".
Moddable SDK v11.5.0 was discovered to contain a heap-buffer-overflow via the component __libc_start_main.π Read
via "National Vulnerability Database".
βΌ CVE-2021-46350 βΌ
π Read
via "National Vulnerability Database".
There is an Assertion 'ecma_is_value_object (value)' failed at jerryscript/jerry-core/ecma/base/ecma-helpers-value.c in JerryScript 3.0.0.π Read
via "National Vulnerability Database".
βΌ CVE-2021-46330 βΌ
π Read
via "National Vulnerability Database".
Moddable SDK v11.5.0 was discovered to contain a SEGV vulnerability via xs/sources/xsDataView.c in fx_ArrayBuffer_prototype_concat.π Read
via "National Vulnerability Database".
βΌ CVE-2022-22894 βΌ
π Read
via "National Vulnerability Database".
Jerryscript 3.0.0 was discovered to contain a stack overflow via ecma_lcache_lookup in /jerry-core/ecma/base/ecma-lcache.c.π Read
via "National Vulnerability Database".
βΌ CVE-2022-22888 βΌ
π Read
via "National Vulnerability Database".
Jerryscript 3.0.0 was discovered to contain a stack overflow via ecma_op_object_find_own in /ecma/operations/ecma-objects.c.π Read
via "National Vulnerability Database".
βΌ CVE-2022-23315 βΌ
π Read
via "National Vulnerability Database".
MCMS v5.2.4 was discovered to contain an arbitrary file upload vulnerability via the component /ms/template/writeFileContent.do.π Read
via "National Vulnerability Database".
βΌ CVE-2022-22891 βΌ
π Read
via "National Vulnerability Database".
Jerryscript 3.0.0 was discovered to contain a SEGV vulnerability via ecma_ref_object_inline in /jerry-core/ecma/base/ecma-gc.c.π Read
via "National Vulnerability Database".
βΌ CVE-2022-23314 βΌ
π Read
via "National Vulnerability Database".
MCMS v5.2.4 was discovered to contain a SQL injection vulnerability via /ms/mdiy/model/importJson.do.π Read
via "National Vulnerability Database".
βΌ CVE-2022-22893 βΌ
π Read
via "National Vulnerability Database".
Jerryscript 3.0.0 was discovered to contain a stack overflow via vm_loop.lto_priv.304 in /jerry-core/vm/vm.c.π Read
via "National Vulnerability Database".
βΌ CVE-2022-22890 βΌ
π Read
via "National Vulnerability Database".
There is an Assertion 'arguments_type != SCANNER_ARGUMENTS_PRESENT && arguments_type != SCANNER_ARGUMENTS_PRESENT_NO_REG' failed at /jerry-core/parser/js/js-scanner-util.c in Jerryscript 3.0.0.π Read
via "National Vulnerability Database".
βΌ CVE-2022-22892 βΌ
π Read
via "National Vulnerability Database".
There is an Assertion 'ecma_is_value_undefined (value) || ecma_is_value_null (value) || ecma_is_value_boolean (value) || ecma_is_value_number (value) || ecma_is_value_string (value) || ecma_is_value_bigint (value) || ecma_is_value_symbol (value) || ecma_is_value_object (value)' failed at jerry-core/ecma/base/ecma-helpers-value.c in Jerryscripts 3.0.0.π Read
via "National Vulnerability Database".
βΌ CVE-2022-22895 βΌ
π Read
via "National Vulnerability Database".
Jerryscript 3.0.0 was discovered to contain a heap-buffer-overflow via ecma_utf8_string_to_number_by_radix in /jerry-core/ecma/base/ecma-helpers-conversion.c.π Read
via "National Vulnerability Database".
βΌ CVE-2022-22929 βΌ
π Read
via "National Vulnerability Database".
MCMS v5.2.4 was discovered to have an arbitrary file upload vulnerability in the New Template module, which allows attackers to execute arbitrary code via a crafted ZIP file.π Read
via "National Vulnerability Database".
βΌ CVE-2022-22930 βΌ
π Read
via "National Vulnerability Database".
A remote code execution (RCE) vulnerability in the Template Management function of MCMS v5.2.4 allows attackers to execute arbitrary code via a crafted payload.π Read
via "National Vulnerability Database".
βΌ CVE-2022-22928 βΌ
π Read
via "National Vulnerability Database".
MCMS v5.2.4 was discovered to have a hardcoded shiro-key, allowing attackers to exploit the key and execute arbitrary code.π Read
via "National Vulnerability Database".
π’ Safari bug lets websites track browsing activity and unique identifiers π’
π Read
via "ITPro".
The flaw, found in Apple's WebKit browser engine, affects Safari 15 on macOS and all browsers on iOS and iPadOS 15π Read
via "ITPro".
IT PRO
Safari bug lets websites track browsing activity and unique identifiers | IT PRO
The flaw, found in Apple's WebKit browser engine, affects Safari 15 on macOS and all browsers on iOS and iPadOS 15
π’ NSW ditches e-voting system after glitch left citizens unable to vote π’
π Read
via "ITPro".
The electoral commissioner is also seeking the validity of the results in three councillor electionsπ Read
via "ITPro".
IT PRO
NSW ditches e-voting system after glitch left citizens unable to vote | IT PRO
The electoral commissioner is also seeking the validity of the results in three councillor elections
π’ Aldi launches its first checkout-free store in London π’
π Read
via "ITPro".
The store uses facial age estimation technology provided by Yoti to verify the purchase of age-restricted productsπ Read
via "ITPro".
IT PRO
Aldi launches its first checkout-free store in London | IT PRO
The store uses facial age estimation technology provided by Yoti to verify the purchase of age-restricted products
π’ European data regulators issued β¬1.1 billion in GDPR fines in 2021 π’
π Read
via "ITPro".
The UK placed sixth on the GDPR fine table with its Β£20 million fine levied against British Airwaysπ Read
via "ITPro".
IT PRO
European data regulators issued β¬1.1 billion in GDPR fines in 2021 | IT PRO
The UK placed sixth on the GDPR fine table with its Β£20 million fine levied against British Airways
π’ IOC defends China Olympics app after 'devastating flaw' revealed π’
π Read
via "ITPro".
The app may even be breaking Google and Appleβs app store policies when it comes to privacy, according to Citizen Labπ Read
via "ITPro".
IT PRO
IOC defends China Olympics app after 'devastating flaw' revealed | IT PRO
The app may even be breaking Google and Appleβs app store policies when it comes to privacy, according to Citizen Lab