CVE-2018-6191 - Artifex MuJS through 1.0.2 has an integer overflow because of incorrect exponent validation
https://www.exploit-db.com/exploits/43903
CVE-2018-5759 - Artifex MuJS through 1.0.2 does not properly maintain the AST depth for binary expressions, which allows remote attackers to cause a denial of service (excessive recursion) via a crafted file
https://www.exploit-db.com/exploits/43904/