Login Sign Up

CVE-2024-24188

9.8 CRITICAL
Remote Code Execution Denial of Service

📋 TL;DR

CVE-2024-24188 is a critical heap buffer overflow vulnerability in Jsish v3.5.0 that allows attackers to execute arbitrary code or cause denial of service. This affects all systems running the vulnerable version of Jsish, a JavaScript interpreter for embedded systems. Attackers can exploit this by providing specially crafted input to trigger the overflow.

💻 Affected Systems

Products:
  • Jsish
Versions: Version 3.5.0 specifically
Operating Systems: All platforms where Jsish runs (Linux, Windows, macOS, embedded systems)
Default Config Vulnerable: ⚠️ Yes
Notes: Any application using Jsish v3.5.0 to process JavaScript code is vulnerable. The vulnerability is in the core jsiUtils.c file.

📦 What is this software?

Jsish by Jsish

View all CVEs affecting Jsish →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete system compromise, data theft, or ransomware deployment.

🟠

Likely Case

Denial of service causing application crashes and service disruption.

🟢

If Mitigated

Limited impact if proper memory protections (ASLR, DEP) are enabled and input validation is in place.

🌐 Internet-Facing: HIGH - If Jsish processes untrusted input from external sources, exploitation is straightforward.
🏢 Internal Only: MEDIUM - Internal systems may still be vulnerable if they process malicious input from internal sources.

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

The GitHub issue contains technical details that could be used to create exploits. Heap buffer overflows are well-understood attack vectors.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Version 3.5.1 or later

Vendor Advisory: https://github.com/pcmacdon/jsish/issues/100

Restart Required: Yes

Instructions:

1. Check current version with 'jsish -v'. 2. Download latest version from GitHub. 3. Compile and install: 'make clean && make && sudo make install'. 4. Restart any services using Jsish.

🔧 Temporary Workarounds

Input Validation Wrapper

all

Implement strict input validation before passing data to Jsish interpreter

# Implement in application code: validate all inputs before jsish execution

Memory Protection

all

Enable ASLR and DEP/PaX to make exploitation more difficult

# Linux: sysctl -w kernel.randomize_va_space=2
# Windows: Enable Data Execution Prevention

🧯 If You Can't Patch

  • Isolate Jsish instances in containers or VMs with minimal privileges
  • Implement network segmentation to limit access to vulnerable systems

🔍 How to Verify

Check if Vulnerable:

Run 'jsish -v' and check if output shows version 3.5.0

Check Version:

jsish -v

Verify Fix Applied:

Run 'jsish -v' and confirm version is 3.5.1 or higher

📡 Detection & Monitoring

Log Indicators:

  • Segmentation fault errors in system logs
  • Unexpected process termination of jsish

Network Indicators:

  • Unusual network connections from jsish processes
  • Large or malformed input to jsish endpoints

SIEM Query:

process_name:"jsish" AND (event_type:"crash" OR exit_code:139)

📊 Metadata

CVE ID: CVE-2024-24188
CVSS v3 Score: 9.8 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-787
Published: February 7, 2024
Last Updated: June 9, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-24188, you might also want to check these:

CVE-2022-43604 10.0

CVE-2022-43604 is a critical out-of-bounds write vulnerability in the OpENer EtherNet/IP stack that ...

Same vulnerability type (CWE-787)
CVE-2025-24201 10.0

This critical vulnerability allows malicious web content to break out of the Web Content sandbox via...

Same vulnerability type (CWE-787)
CVE-2020-14871 10.0

This is a critical buffer overflow vulnerability (CWE-787) in Oracle Solaris's Pluggable Authenticat...

Same vulnerability type (CWE-787)