Vulnerability Details : CVE-2023-24833

A use-after-free in BigIntPrimitive addition in Hermes prior to commit a6dcafe6ded8e61658b40f5699878cd19a481f80 could have been used by an attacker to leak raw data from Hermes VM’s heap. Note that this is only exploitable in cases where Hermes is used to execute untrusted JavaScript. Hence, most React Native applications are not affected.

Vulnerability category: Memory Corruption

Published 2023-05-18 22:15:10

Updated 2023-05-26 23:27:06

Source Facebook, Inc.

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2023-24833

Probability of exploitation activity in the next 30 days: 0.08%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 33 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2023-24833

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Source
7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N	3.9	3.6	nvd@nist.gov
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: None Availability: None

CWE ids for CVE-2023-24833

CWE-125 Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

Assigned by: cve-assign@fb.com (Secondary)
CWE-416 Use After Free

Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2023-24833

https://github.com/facebook/hermes/commit/a6dcafe6ded8e61658b40f5699878cd19a481f80

Re-sync with internal repository (#908) · facebook/hermes@a6dcafe · GitHub
Patch

CVEs referencing this url
https://www.facebook.com/security/advisories/cve-2023-24833

CVE-2023-24833
Patch;Vendor Advisory

Products affected by CVE-2023-24833

Facebook » Hermes
Versions before (<) 2023-02-02
cpe:2.3:a:facebook:hermes:*:*:*:*:*:*:*:*
Matching versions