CNNVD-202510-2346 Information

CNNVD ID

CNNVD-202510-2346

Related CVE

CVE-2025-62491

• CNNVD Published: 2025-10-16

Description (Chinese)

QuickJS是QuickJS开源的一个小型且可嵌入的 Javascript 引擎。 QuickJS存在安全漏洞，该漏洞源于处理未处理拒绝承诺列表时存在释放后重用问题，可能导致内存损坏。

Description (English)

QuickJS is a small, embedded Javascript engine for QuickJS open source. QuickJS had a security loophole, which stemmed from the problem of re-use after release when the list of refusals was not processed and could lead to memory damage.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

QuickJS

Published

2025-10-16

Last Modified

2026-02-24

References

https://bellard.org/quickjs/Changelog https://issuetracker.google.com/434195203