Out-of-bounds Read Vulnerability in Espruino before 1.98

Out-of-bounds Read Vulnerability in Espruino before 1.98

CVE-2018-11592 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

Espruino before 1.98 allows attackers to cause a denial of service (application crash) with a user crafted input file via an Out-of-bounds Read during syntax parsing in which certain height validation is missing in libs/graphics/jswrap_graphics.c.

Learn more about our User Device Pen Test.