By passing invalid javascript code where await and yield were called upon non-async and non-generator getter/setter functions, Hermes would invoke generator functions and error out on invalid await/yield positions. This could result in segmentation fault as a consequence of type confusion error, with a low chance of RCE. This issue affects Hermes versions prior to v0.10.0.

Affected Packages

npm hermes-engine

Affected versions: 0 (fixed in 0.10.0)

Related CVEs

CVE-2021-24044

Key Information

GHSA ID

GHSA-7mhc-prgv-r3q4

Published

January 16, 2022 12:00 AM

Last Modified

June 22, 2022 6:19 PM

CVSS Score

9.0 /10

Primary Ecosystem

npm

Primary Package

hermes-engine

GitHub Reviewed

✓ Yes

Dataset

Last updated: July 3, 2025 6:26 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.