Heap-Use-After-Free Vulnerability in Jsish v3.5.0: DeleteTreeValue DoS

CVE-2021-46495 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Jsish v3.5.0 was discovered to contain a heap-use-after-free via DeleteTreeValue in src/jsiObj.c. This vulnerability can lead to a Denial of Service (DoS).

Learn more about our Web Application Penetration Testing UK.