CNNVD-202510-2344 Information

CNNVD ID

CNNVD-202510-2344

Related CVE

CVE-2025-62493

• CNNVD Published: 2025-10-16

Description (Chinese)

QuickJS是QuickJS开源的一个小型且可嵌入的 Javascript 引擎。 QuickJS存在安全漏洞，该漏洞源于BigInt字符串转换逻辑中位数计算错误，可能导致越界读取和信息泄露。

Description (English)

QuickJS is a small, embedded Javascript engine for QuickJS open source. There is a security loophole in QuickJS, which is the result of a mid-digit calculation error in BigInt string conversion logic, which may lead to cross-border reading and information leakage.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

QuickJS

Published

2025-10-16

Last Modified

2026-02-24

References

https://bellard.org/quickjs/Changelog https://issuetracker.google.com/434193024