Vulnerability in Facebook Hermes
CVE-2022-40138
An integer conversion error in Hermes bytecode generation, prior to commit 6aa825e480d48127b480b08d13adf70033237097, could have been used to perform Out-Of-Bounds operations and subsequently execute arbitrary code. Note that this is only e…
EPSS: 0.012 (79.4th percentile) — read the EPSS interpretation.
Affected products
- Facebook Hermes — versions unspecified