A type confusion vulnerability when resolving properties of JavaScript objects with specially-crafted prototype chains in Facebook Hermes prior to commit fe52854cdf6725c2eaa9e125995da76e6ceb27da allows attackers to potentially execute arbitrary code via crafted JavaScript. Note that this is only exploitable if the application using Hermes permits evaluation of untrusted JavaScript. Hence, most React Native applications are not affected.
CVE-2020-1911 - Critical Severity Vulnerability
Library home page: https://registry.npmjs.org/hermes-engine/-/hermes-engine-0.0.0.tgz
Path to dependency file: /package.json
Path to vulnerable library: /package.json
Dependency Hierarchy: - react-native-0.62.2.tgz (Root Library) - :x: **hermes-engine-0.0.0.tgz** (Vulnerable Library)
Found in HEAD commit: d20cf900176176960d1f8b0ac99630e6e7203fd2
Found in base branch: master
A type confusion vulnerability when resolving properties of JavaScript objects with specially-crafted prototype chains in Facebook Hermes prior to commit fe52854cdf6725c2eaa9e125995da76e6ceb27da allows attackers to potentially execute arbitrary code via crafted JavaScript. Note that this is only exploitable if the application using Hermes permits evaluation of untrusted JavaScript. Hence, most React Native applications are not affected.
Publish Date: 2020-09-04
URL: CVE-2020-1911
Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: Low - Privileges Required: None - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: High - Integrity Impact: High - Availability Impact: High
For more information on CVSS3 Scores, click here.Type: Upgrade version
Origin: https://github.com/advisories/GHSA-f5x2-xv93-4p23
Release Date: 2020-09-11
Fix Resolution: hermes-engine - 0.5.2
Step up your Open Source Security Game with Mend here