Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2021-33796

In MuJS before version 1.1.2, a use-after-free flaw in the regexp source property access may cause denial of service.

Published

2023-07-07T18:15:09.430

Last Modified

2024-11-21T06:09:36.133

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 10.0 (CRITICAL)

Weaknesses

Type: Secondary
CWE-416
Type: Primary
CWE-416

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	artifex	mujs	< 1.1.2	Yes

References

https://github.com/ccxvii/mujs/commit/7ef066a3bb95bf83e7c5be50d859e62e58fe8515 Patch ([email protected])
https://github.com/ccxvii/mujs/commit/7ef066a3bb95bf83e7c5be50d859e62e58fe8515 Patch (af854a3a-2127-422b-91ae-364da2661108)