CVE STALKER

CVE-2021-24044

CVSS
DESCRIPTIONBy passing invalid javascript code where await and yield were called upon non-async and non-generator getter/setter functions, Hermes would invoke generator functions and error out on invalid await/yield positions. This could result in segmentation fault as a consequence of type confusion error, with a low chance of RCE. This issue affects Hermes versions prior to v0.10.0.
HEAT SCORE20

WORDS

TWEETS

DATE TWEETS USER
2022-01-27 07:10:57#CyberSecurity #Security #CERT #CVE #Nist #Analysed #breach #vulnerability : CVE-2021-24044 (hermes) https://t.co/evFj0TcFGt https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-240444ng3n01r3
2022-01-19 04:36:43Facebook Hermes up to 0.9.x type confusion [CVE-2021-24044] https://t.co/D3bwgDezYQ #Exploit:No #Local:No #Product:Hermes #Remote:Yes https://prophaze.com/cve/facebook-hermes-up-to-0-9-x-type-confusion-cve-2021-24044/prophaze
2022-01-17 09:00:18Facebook Hermes up to 0.9.x type confusion [CVE-2021-24044] A vulnerability, which was classified as critical, was… https://t.co/gBRdoGn4CS https://twitter.com/i/web/status/1482998686603001856threatmeter
2022-01-17 08:10:18CVE-2021-24044 By passing invalid javascript code where await and yield were called upon non-async and non-generato… https://t.co/aleXBrQbTx https://twitter.com/i/web/status/1482988399812399104threatmeter
2022-01-16 08:30:28CVE-2021-24044 By passing invalid javascript code where await and yield were called upon non-async and non-generato… https://t.co/LoXTlYocNe https://twitter.com/i/web/status/1482631052405391367eyeTSystems
2022-01-16 07:10:29CVE-2021-24044 https://t.co/VajFGO1OIg #HarsiaInfo https://har-sia.info/CVE-2021-24044.htmlHar_sia
2022-01-15 14:20:58🚨 NEW: CVE-2021-24044 🚨 By passing invalid javascript code where await and yield were called upon non-async and non… https://t.co/dAqv6MLf5L https://twitter.com/i/web/status/1482355191743713283threatintelctr
2022-01-15 08:30:09CVE-2021-24044 By passing invalid javascript code where await and yield were called upon non-async and non-generato… https://t.co/bq6wJ6kn3s https://twitter.com/i/web/status/1482268785268695040eyeTSystems
2022-01-15 08:01:21New post from https://t.co/uXvPWJy6tj (Facebook Hermes up to 0.9.x type confusion [CVE-2021-24044]) has been publis… https://t.co/CwYhugBTs6 http://www.sesin.at https://twitter.com/i/web/status/1482258894420422656WolfgangSesin
2022-01-15 08:01:07New post from https://t.co/9KYxtdZjkl (Facebook Hermes up to 0.9.x type confusion [CVE-2021-24044]) has been publis… https://t.co/uGwBUfVXq3 http://www.sesin.at https://twitter.com/i/web/status/1482258909561860099www_sesin_at
2022-01-15 07:50:08Hi, I'm CVE-2021-24044. I was never good with numbers though, so you can call me Patristic Blowfish https://t.co/bYFMtqmi0L https://nvd.nist.gov/vuln/detail/CVE-2021-24044vulnonym
2022-01-15 06:30:24New post from https://t.co/9KYxtdZjkl (CVE-2021-24044) has been published on https://t.co/IRMpXXOek9 http://www.sesin.at https://www.sesin.at/2022/01/15/cve-2021-24044/www_sesin_at
2022-01-15 06:30:19New post from https://t.co/uXvPWJy6tj (CVE-2021-24044) has been published on https://t.co/vtzAr9bjuo http://www.sesin.at https://www.sesin.at/2022/01/15/cve-2021-24044/WolfgangSesin
2022-01-15 02:20:56🚨 NEW: CVE-2021-24044 🚨 By passing invalid javascript code where await and yield were called upon non-async and non… https://t.co/O2mUzReM3Z https://twitter.com/i/web/status/1482173997638995970threatintelctr
2022-01-15 01:50:25🚨 NEW: CVE-2021-24044 🚨 By passing invalid javascript code where await and yield were called upon non-async and non… https://t.co/cG7wuG9ZTz https://twitter.com/i/web/status/1482166447447375874threatintelctr
2022-01-15 01:50:20CVE-2021-24044 By passing invalid javascript code where await and yield were called upon non-async and non-generato… https://t.co/ohKb076hrM https://twitter.com/i/web/status/1482166930798788610CVEnew