Known Vulnerabilities for products from Quickjs Project
Listed below are 4 of the newest known vulnerabilities associated with the vendor "Quickjs Project".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-69654 json | A crafted JavaScript input executed with the QuickJS release 2025-09-13, fixed in commit fcd33c1afa7b3028531f53cd1190a3877454... | Not Provided | 2026-03-06 | 2026-06-02 |
| CVE-2025-69653 json | A crafted JavaScript input can trigger an internal assertion failure in QuickJS release 2025-09-13, fixed in commit 1dbba8a88... | Not Provided | 2026-03-06 | 2026-06-02 |
| CVE-2023-31922 json | QuickJS commit 2788d71 was discovered to contain a stack-overflow via the component js_proxy_isArray at quickjs.c. | 7.5 - HIGH | 2023-05-12 | 2023-05-24 |
| CVE-2020-22876 json | Buffer Overflow vulnerability in quickjs.c in QuickJS, allows remote attackers to cause denial of service. This issue is reso... | 7.5 - HIGH | 2021-07-13 | 2021-07-15 |