CVE-2025-62490

216.73.216.233

· Published 16/10/2025 16:15 · Modified 16/10/2025 16:15

Labels: CVE-2025-62490 2025-10-16 CVE-2025-62490 CWE-416 [email protected]

Essential information

Published: 16/10/2025 16:15
Modified: 16/10/2025 16:15
Author: —
Creator: —
CVSS: 8.8 HIGH (v3) 8.8 HIGH (v4.0)
CISA KEV: No
CWE: —
CVSS vector: —

CVSS metrics

Description

In quickjs, in js_print_object, when printing an array, the function first fetches the array length and then loops over it. The issue is, printing a value is not side-effect free. An attacker-defined callback could run during js_print_value, during which the array could get resized and len1 become out of bounds. This results in a use-after-free.A second instance occurs in the same function during printing of a map or set objects. The code iterates over ms->records list, but once again, elements could be removed from the list during js_print_value call.

NVD status

Status: Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source: [email protected]
NVD: View on NVD

Affected products (CPE)

Product	CPE
quickjs / quickjs	`cpe:2.3:a:quickjs:quickjs::::::::`