Login Sign Up

CVE-2021-46513

7.8 HIGH
Denial of Service Buffer Overflow

📋 TL;DR

CVE-2021-46513 is a buffer overflow vulnerability in Cesanta MJS JavaScript engine that allows attackers to execute arbitrary code or cause denial of service. This affects any application or device using vulnerable versions of MJS for JavaScript execution. The vulnerability is triggered through specially crafted string inputs to the mjs_mk_string function.

💻 Affected Systems

Products:
  • Cesanta MJS JavaScript engine
Versions: v2.20.0 specifically
Operating Systems: All platforms where MJS runs (Linux, Windows, embedded systems)
Default Config Vulnerable: ⚠️ Yes
Notes: Any application embedding MJS v2.20.0 is vulnerable when processing string inputs through mjs_mk_string.

📦 What is this software?

Mjs by Cesanta

View all CVEs affecting Mjs →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete system compromise, data theft, or persistent backdoor installation.

🟠

Likely Case

Application crash causing denial of service, potentially disrupting dependent services.

🟢

If Mitigated

Contained crash within the MJS process with minimal impact if proper sandboxing and privilege separation are implemented.

🌐 Internet-Facing: HIGH if MJS processes untrusted user input from external sources.
🏢 Internal Only: MEDIUM if MJS only processes trusted internal data, but still vulnerable to internal threats.

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Proof of concept available in GitHub issue #189. Exploitation requires triggering the vulnerable function with crafted input.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: v2.20.1 or later

Vendor Advisory: https://github.com/cesanta/mjs/issues/189

Restart Required: Yes

Instructions:

1. Update MJS to version 2.20.1 or later. 2. Recompile any applications using MJS. 3. Restart affected services.

🔧 Temporary Workarounds

Input validation and sanitization

all

Implement strict input validation for strings passed to mjs_mk_string function

Memory protection controls

linux

Enable ASLR, DEP, and other memory protection mechanisms

echo 2 > /proc/sys/kernel/randomize_va_space
sysctl -w kernel.exec-shield=1

🧯 If You Can't Patch

  • Network segmentation to isolate systems using vulnerable MJS versions
  • Implement strict input validation and sanitization for all data processed by MJS

🔍 How to Verify

Check if Vulnerable:

Check if application uses MJS v2.20.0 by examining dependencies or running: strings binary_name | grep mjs

Check Version:

Check application documentation or build configuration for MJS version

Verify Fix Applied:

Verify MJS version is 2.20.1 or later and test with known exploit payloads

📡 Detection & Monitoring

Log Indicators:

  • Application crashes with segmentation faults
  • Abnormal memory usage patterns
  • Repeated failed string processing attempts

Network Indicators:

  • Unusual network traffic to/from MJS-enabled applications
  • Exploit kit traffic patterns

SIEM Query:

source="application_logs" AND ("segmentation fault" OR "buffer overflow" OR "mjs")

📊 Metadata

CVE ID: CVE-2021-46513
CVSS v3 Score: 7.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CWE: CWE-120
Published: January 27, 2022
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2021-46513, you might also want to check these:

CVE-2023-24482 10.0

This CVE describes a critical buffer overflow vulnerability in COMOS software's cache validation ser...

Same vulnerability type (CWE-120)
CVE-2024-22039 10.0

This vulnerability allows unauthenticated remote attackers to execute arbitrary code with root privi...

Same vulnerability type (CWE-120)
CVE-2022-22570 10.0

A buffer overflow vulnerability in UniFi Door Access Reader Lite firmware allows attackers with netw...

Same vulnerability type (CWE-120)