CVE-2025-62491

Name of the Vulnerable Software and Affected Versions QuickJS (affected versions not specified)

Description A Use-After-Free (UAF) condition exists in the QuickJS engine’s standard library when processing unhandled rejected promises. The js std promise rejection check function iterates through the rejected promise list. If a promise rejection reason is an Error object with a custom property getter, the getter can execute code that calls catch() on the same promise. This triggers js std promise rejection tracker, which frees the promise entry from the list while the iteration continues, leading to a Use-After-Free. The vulnerable function is js std promise rejection check. The API endpoint is not mentioned. The vulnerable parameter is not mentioned.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.