NULL Pointer Dereference Vulnerability in Espruino before 1.98

NULL Pointer Dereference Vulnerability in Espruino before 1.98

CVE-2018-11591 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

Espruino before 1.98 allows attackers to cause a denial of service (application crash) with a user crafted input file via a NULL pointer dereference during syntax parsing. This was addressed by adding validation for a debug trace print statement in jsvar.c.

Learn more about our Cis Benchmark Audit For Print Devices.