CNNVD-202510-2341 Information

CNNVD ID

CNNVD-202510-2341

Related CVE

CVE-2025-62496

• CNNVD Published: 2025-10-16

Description (Chinese)

QuickJS是QuickJS开源的一个小型且可嵌入的 Javascript 引擎。 QuickJS存在安全漏洞，该漏洞源于BigInt字符串解析逻辑中存在整数溢出，可能导致堆越界写入。

Description (English)

QuickJS is a small, embedded Javascript engine for QuickJS open source. QuickJS had a security loophole, which stemmed from the integer spill in the BigInt string resolution logic, which could lead to stacking across borders.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

QuickJS

Published

2025-10-16

Last Modified

2026-02-24

References

https://bellard.org/quickjs/Changelog https://issuetracker.google.com/434193016