Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6256 matches found

NVD
NVDadded 2022/02/14 10:15 p.m.17 views

CVE-2022-25139

njs through 0.7.0, used in NGINX, was discovered to contain a heap use-after-free in njsawaitfulfilled...

9.8CVSS0.01591EPSS
Exploits1References3
OSV
OSVadded 2022/02/14 10:15 p.m.22 views

CVE-2022-25139

njs through 0.7.0, used in NGINX, was discovered to contain a heap use-after-free in njsawaitfulfilled...

9.8CVSS7.3AI score
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2022/02/14 10:15 p.m.4 views

CVE-2021-46463

njs through 0.7.1, used in NGINX, was discovered to contain a control flow hijack caused by a Type Confusion vulnerability in njspromiseperformthen...

9.8CVSS7.2AI score0.01637EPSS
Exploits1References4
ATTACKERKB
ATTACKERKBadded 2022/02/14 10:15 p.m.3 views

CVE-2021-46461

njs through 0.7.0, used in NGINX, was discovered to contain an out-of-bounds array access via njsvmcodetypeof in /src/njsvmcode.c...

9.8CVSS7.2AI score0.03073EPSS
Exploits1References4
NVD
NVDadded 2022/02/14 10:15 p.m.16 views

CVE-2021-46462

njs through 0.7.1, used in NGINX, was discovered to contain a segmentation violation via njsobjectsetprototype in /src/njsobject.c...

7.5CVSS0.01651EPSS
Exploits1References3
NVD
NVDadded 2022/02/14 10:15 p.m.20 views

CVE-2021-46461

njs through 0.7.0, used in NGINX, was discovered to contain an out-of-bounds array access via njsvmcodetypeof in /src/njsvmcode.c...

9.8CVSS0.03073EPSS
Exploits1References3
NVD
NVDadded 2022/02/14 10:15 p.m.20 views

CVE-2021-46463

njs through 0.7.1, used in NGINX, was discovered to contain a control flow hijack caused by a Type Confusion vulnerability in njspromiseperformthen...

9.8CVSS0.01637EPSS
Exploits1References3
OSV
OSVadded 2022/02/14 10:15 p.m.3 views

ALPINE-CVE-2021-46462

njs through 0.7.1, used in NGINX, was discovered to contain a segmentation violation via njsobjectsetprototype in /src/njsobject.c...

7.5CVSS7.2AI score0.01651EPSS
Exploits1References1
OSV
OSVadded 2022/02/14 10:15 p.m.3 views

ALPINE-CVE-2021-46463

njs through 0.7.1, used in NGINX, was discovered to contain a control flow hijack caused by a Type Confusion vulnerability in njspromiseperformthen...

9.8CVSS7.3AI score0.01637EPSS
Exploits1References1
OSV
OSVadded 2022/02/14 10:15 p.m.21 views

CVE-2021-46462

njs through 0.7.1, used in NGINX, was discovered to contain a segmentation violation via njsobjectsetprototype in /src/njsobject.c...

7.5CVSS7.2AI score
Exploits0References3
OSV
OSVadded 2022/02/14 10:15 p.m.30 views

CVE-2021-46461

njs through 0.7.0, used in NGINX, was discovered to contain an out-of-bounds array access via njsvmcodetypeof in /src/njsvmcode.c...

9.8CVSS7.3AI score
Exploits0References3
Prion
Prionadded 2022/02/14 10:15 p.m.15 views

Heap overflow

njs through 0.7.0, used in NGINX, was discovered to contain a heap use-after-free in njsawaitfulfilled...

7.5CVSS9.5AI score0.01591EPSS
Exploits1References3Affected Software1
Prion
Prionadded 2022/02/14 10:15 p.m.24 views

Out-of-bounds

njs through 0.7.0, used in NGINX, was discovered to contain an out-of-bounds array access via njsvmcodetypeof in /src/njsvmcode.c...

7.5CVSS9.5AI score0.03073EPSS
Exploits1References3Affected Software1
Prion
Prionadded 2022/02/14 10:15 p.m.17 views

Type confusion

njs through 0.7.1, used in NGINX, was discovered to contain a control flow hijack caused by a Type Confusion vulnerability in njspromiseperformthen...

7.5CVSS9.5AI score0.01637EPSS
Exploits1References3Affected Software1
Prion
Prionadded 2022/02/14 10:15 p.m.20 views

Code injection

njs through 0.7.1, used in NGINX, was discovered to contain a segmentation violation via njsobjectsetprototype in /src/njsobject.c...

5CVSS7.6AI score0.01651EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2022/02/14 9:47 p.m.24 views

CVE-2021-46463

njs through 0.7.1, used in NGINX, was discovered to contain a control flow hijack caused by a Type Confusion vulnerability in njspromiseperformthen...

9.7AI score0.01637EPSS
Exploits1References3
CVE
CVEadded 2022/02/14 9:47 p.m.154 views

CVE-2021-46463

CVE-2021-46463: In njs (used in NGINX) up to version 0.7.1, a Type Confusion in njs_promise_perform_then() enables control-flow hijack. NVD lists high/critical scores (CVSS v3.1: 9.8) with network attacker, no user interaction. Affected: njs within NGINX. Remediation/fix not specified in the prov...

9.8CVSS9.4AI score0.01637EPSS
Exploits1References3Affected Software1
AlpineLinux
AlpineLinuxadded 2022/02/14 9:47 p.m.763 views

CVE-2021-46463

njs through 0.7.1, used in NGINX, was discovered to contain a control flow hijack caused by a Type Confusion vulnerability in njspromiseperformthen...

9.8CVSS9.6AI score0.01637EPSS
Exploits1
CVE
CVEadded 2022/02/14 9:47 p.m.197 views

CVE-2022-25139

CVE-2022-25139 affects njs up to version 0.7.0 (used in NGINX). The issue is a heap use-after-free in njs_await_fulfilled. CVSS metrics indicate High/CRITICAL impact across confidentiality, integrity, and availability (BASE scores: 7.5/9.8). The connected documents confirm the vulnerable componen...

9.8CVSS9.5AI score0.01591EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2022/02/14 9:47 p.m.19 views

CVE-2022-25139

njs through 0.7.0, used in NGINX, was discovered to contain a heap use-after-free in njsawaitfulfilled...

9.8AI score0.01591EPSS
Exploits1References3
Rows per page
Query Builder