vulnerability

JavaScript Memory Leaks - Accidental global variable

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:L/Au:M/C:P/I:N/A:N)	Jan 1, 2017	Jun 27, 2018	Jun 27, 2018

Severity

CVSS

(AV:N/AC:L/Au:M/C:P/I:N/A:N)

Published

Jan 1, 2017

Added

Jun 27, 2018

Modified

Jun 27, 2018

Description

Global variables are easily leaked in Javascript. You may consider the following javascript code used in the default, non-strict mode: The default, non-strict mode allows some relatively "unsafe" actions to be taken, and it allows some code mistakes that make it difficult for JavaScript engines to perform optimizations.

Solution

javascriptcheck-javascriptleaks-r01

References

CWE-316

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today