6 matches found
CVE-2022-25139
njs through 0.7.0, used in NGINX, was discovered to contain a heap use-after-free in njsawaitfulfilled...
BELL-CVE-2022-25139 CVE-2022-25139 does not affect BellSoft software
Bulletin has no description...
CVE-2022-25139
njs through 0.7.0, used in NGINX, was discovered to contain a heap use-after-free in njsawaitfulfilled...
CVE-2022-25139
njs through 0.7.0, used in NGINX, was discovered to contain a heap use-after-free in njsawaitfulfilled...
CVE-2022-25139
CVE-2022-25139 affects njs up to version 0.7.0 (used in NGINX). The issue is a heap use-after-free in njs_await_fulfilled. CVSS metrics indicate High/CRITICAL impact across confidentiality, integrity, and availability (BASE scores: 7.5/9.8). The connected documents confirm the vulnerable componen...
CVE-2022-25139
njs through 0.7.0, used in NGINX, was discovered to contain a heap use-after-free in njsawaitfulfilled...