PT-2020-15167 · Facebook · Hermes

Published

2020-10-08

Updated

2022-05-24

CVE-2020-1914

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Facebook Hermes versions prior to commit b2021df620824627f5a8c96615edbd1eb7fdddfc

Description A logic issue in handling the SaveGeneratorLong instruction allows attackers to potentially read out of bounds or execute arbitrary code via crafted JavaScript, but only if the application permits evaluation of untrusted JavaScript.

Recommendations For Facebook Hermes versions prior to commit b2021df620824627f5a8c96615edbd1eb7fdddfc, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting the evaluation of untrusted JavaScript in applications using Hermes to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-1119CWE-670

Related Identifiers

CVE-2020-1914

GHSA-327C-QX3V-H673

Affected Products

Hermes

PT-2020-15167 · Facebook · Hermes

CVE-2020-1914

Weakness Enumeration

Related Identifiers

Affected Products

References · 7