{"id":"GHSA-7mhc-prgv-r3q4","summary":"Access of Resource Using Incompatible Type in Hermes","details":"By passing invalid javascript code where await and yield were called upon non-async and non-generator getter/setter functions, Hermes would invoke generator functions and error out on invalid await/yield positions. This could result in segmentation fault as a consequence of type confusion error, with a low chance of RCE. This issue affects Hermes versions prior to v0.10.0.","aliases":["CVE-2021-24044"],"modified":"2023-11-08T04:05:14.417618Z","published":"2022-01-16T00:00:45Z","database_specific":{"github_reviewed":true,"cwe_ids":["CWE-843"],"github_reviewed_at":"2022-06-22T18:19:44Z","nvd_published_at":"2022-01-15T01:15:00Z","severity":"CRITICAL"},"references":[{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-24044"},{"type":"PACKAGE","url":"https://github.com/facebook/hermes"},{"type":"WEB","url":"https://www.facebook.com/security/advisories/cve-2021-24044"}],"affected":[{"package":{"name":"hermes-engine","ecosystem":"npm","purl":"pkg:npm/hermes-engine"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"0.10.0"}]}],"database_specific":{"last_known_affected_version_range":"\u003c= 0.9.0","source":"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/01/GHSA-7mhc-prgv-r3q4/GHSA-7mhc-prgv-r3q4.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}