CVE-2022-34028

Nginx NJS v0.7.5 was discovered to contain a segmentation violation via njsutf8next at src/njsutf8.h...

Code injection

Nginx NJS v0.7.4 was discovered to contain a segmentation violation via njsvalueproperty at njsvalue.c...

CVE-2022-34030

Nginx NJS v0.7.5 was discovered to contain a segmentation violation via njsdjbhash at src/njsdjbhash.c...

Out-of-bounds

Nginx NJS v0.7.4 was discovered to contain an out-of-bounds read via njsscopevalue at njsscope.h...

Code injection

Nginx NJS v0.7.5 was discovered to contain a segmentation violation via njsutf8next at src/njsutf8.h...

Design/Logic Flaw

Nginx NJS v0.7.5 was discovered to contain a segmentation violation in the function njsvalueownenumerate at src/njsvalue.c...

Code injection

Nginx NJS v0.7.5 was discovered to contain a segmentation violation via njsdjbhash at src/njsdjbhash.c...

Design/Logic Flaw

Nginx NJS v0.7.5 was discovered to contain a segmentation violation via njsvaluetonumber at src/njsvalueconversion.h...

CVE-2022-34032

CVE-2022-34032 summary (data from provided sources) : Nginx NJS 0.7.5 contains a segmentation violation in the function njs_value_own_enumerate (src/njs_value.c). This CVE has a CVSS v3.1 base score of 7.5 (High): Attack Vector Network, Attack Complexity Low, Privileges Required None, User Intera...

CVE-2022-34032

Nginx NJS v0.7.5 was discovered to contain a segmentation violation in the function njsvalueownenumerate at src/njsvalue.c...

CVE-2022-34031

CVE-2022-34031 affects Nginx NJS v0.7.5. The vulnerability is a segmentation violation caused by njs_value_to_number in src/njs_value_conversion.h, which may crash the process. Reported CVSS v3.1 base score 7.5 (HIGH) with network attack vector, no user interaction, and no confidentiality/integri...

CVE-2022-34031

Nginx NJS v0.7.5 was discovered to contain a segmentation violation via njsvaluetonumber at src/njsvalueconversion.h...

CVE-2022-34030

The CVE-2022-34030 entry concerns Nginx NJS 0.7.5, with a segmentation fault in the njs_djb_hash function (src/njs_djb_hash.c). The vulnerability is described as a segmentation violation, indicating a crash or denial of service condition. The available connected documents confirm the affected com...

CVE-2022-34030

Nginx NJS v0.7.5 was discovered to contain a segmentation violation via njsdjbhash at src/njsdjbhash.c...

CVE-2022-34029

Nginx NJS v0.7.4 was discovered to contain an out-of-bounds read via njsscopevalue at njsscope.h...

CVE-2022-34029

Scope and impact: CVE-2022-34029 affects Nginx NJS 0.7.4, with an out-of-bounds read via njs_scope_value in njs_scope.h. The vulnerability is described across multiple sources (e.g., NVD, Red Hat, osv.dev) as a high-severity issue with CVSS 3.1 base score 9.1, indicating critical impact to confid...

CVE-2022-34028

CVE-2022-34028 affects Nginx NJS 0.7.5. The vulnerability is a segmentation fault triggered by njs_utf8_next in src/njs_utf8.h, as described in connected records. The NVD entry links a CVSS v3.1 base score of 7.5 (HIGH) with network attack vector, no privileges, no user interaction, and availabil...

CVE-2022-34028

Nginx NJS v0.7.5 was discovered to contain a segmentation violation via njsutf8next at src/njsutf8.h...

CVE-2022-34027

Nginx NJS v0.7.4 was discovered to contain a segmentation violation via njsvalueproperty at njsvalue.c...

CVE-2022-34027

Summary: CVE-2022-34027 affects Nginx NJS 0.7.4. A vulnerability in the njs_value_property function (njs_value.c) may cause a segmentation fault and enable remote code execution. The CVSSv3.1 base score is 7.5 ( HIGH ), with network access, no user interaction required. Details from connected sou...