Heap-Use-After-Free Vulnerability in Jsish v3.5.0: Exploitable DoS via jsi_wswebsocketObjFree

Heap-Use-After-Free Vulnerability in Jsish v3.5.0: Exploitable DoS via jsi_wswebsocketObjFree

CVE-2021-46498 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_wswebsocketObjFree in src/jsiWebSocket.c. This vulnerability can lead to a Denial of Service (DoS).

Learn more about our Web App Pen Testing.