← Back to CVE List
CVE-2020-24345
JerryScript through 2.3.0 allows stack consumption via function a(){new new Proxy(a,{})}JSON.parse("[]",a). NOTE: the vendor states that the problem is the lack of the --stack-limit option
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt