Quickjs_project Quickjs
14 CVEs affecting Quickjs_project Quickjs. Latest disclosed: 2026-03-06. Critical: 0, High: 9.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-62496 | High | 8.8 | 2025-10-16 | A vulnerability exists in the QuickJS engine's BigInt string parsing logic (js_bigint_from_string) when attempting to create a BigInt from a string with an exc… |
CVE-2025-62495 | High | 8.8 | 2025-10-16 | An integer overflow vulnerability exists in the QuickJS regular expression engine (libregexp) due to an inconsistent representation of the bytecode buffer size… |
CVE-2025-62494 | High | 8.8 | 2025-10-16 | A type confusion vulnerability exists in the handling of the string addition (+) operation within the QuickJS engine. * The code first checks if the left-h… |
CVE-2025-62491 | High | 8.8 | 2025-10-16 | A Use-After-Free (UAF) vulnerability exists in the QuickJS engine's standard library when iterating over the global list of unhandled rejected promises (ts->re… |
CVE-2025-62490 | High | 8.8 | 2025-10-16 | In quickjs, in js_print_object, when printing an array, the function first fetches the array length and then loops over it. The issue is, printing a value is n… |
CVE-2025-69654 | High | 7.5 | 2026-03-06 | A crafted JavaScript input executed with the QuickJS release 2025-09-13, fixed in commit fcd33c1afa7b3028531f53cd1190a3877454f6b3 (2025-12-11),`qjs` interprete… |
CVE-2023-48183 | High | 7.5 | 2024-04-23 | QuickJS before c4cdd61 has a build_for_in_iterator NULL pointer dereference because of an erroneous lexical scope of "this" with eval. |
CVE-2023-31922 | High | 7.5 | 2023-05-12 | QuickJS commit 2788d71 was discovered to contain a stack-overflow via the component js_proxy_isArray at quickjs.c. |
CVE-2020-22876 | High | 7.5 | 2021-07-13 | Buffer Overflow vulnerability in quickjs.c in QuickJS, allows remote attackers to cause denial of service. This issue is resolved in the 2020-07-05 release. |
CVE-2025-69653 | Medium | 6.5 | 2026-03-06 | A crafted JavaScript input can trigger an internal assertion failure in QuickJS release 2025-09-13, fixed in commit 1dbba8a88eaa40d15a8a9b70bb1a0b8fb5b552e6 (2… |
CVE-2025-62493 | Medium | 6.5 | 2025-10-16 | A vulnerability exists in the QuickJS engine's BigInt string conversion logic (js_bigint_to_string1) due to an incorrect calculation of the required number of… |
CVE-2025-62492 | Medium | 6.5 | 2025-10-16 | A vulnerability stemming from floating-point arithmetic precision errors exists in the QuickJS engine's implementation of TypedArray.prototype.indexOf() when a… |
CVE-2025-46688 | Medium | 5.6 | 2025-04-27 | quickjs-ng through 0.9.0 has an incorrect size calculation in JS_ReadBigInt for a BigInt, leading to a heap-based buffer overflow. QuickJS before 2025-04-26 is… |
CVE-2023-48184 | Low | 3.9 | 2024-04-23 | QuickJS before 7414e5f has a quickjs.h JS_FreeValueRT use-after-free because of incorrect garbage collection of async functions with closures. |