Lucene search
HistoryOct 28, 2022 - 9:15 p.m.
CVE-2022-43284
cve-2022-43284
nginx
njs
segmentation violation
njs_scope_valid_value
njs_scope.h
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
32.8%
Nginx NJS v0.7.2 to v0.7.4 was discovered to contain a segmentation violation via njs_scope_valid_value at njs_scope.h. NOTE: the vendor disputes the significance of this report because NJS does not operate on untrusted input.
Affected configurations
Node
f5njsRange0.7.2β0.7.4
Social References
More
Related
nvd
nvd
CVE-2022-43284
2022-10-28 21:15:10
cvelist
cvelist
CVE-2022-43284
2022-10-28 00:00:00
prion
prion
Input validation
2022-10-28 21:15:00
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
32.8%
Related for CVE-2022-43284