3 matches found
K01112063: NGINX ngx_http_hls_module vulnerability CVE-2022-41743
Security Advisory Description NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module ngxhttphlsmodule that might allow a local attacker to corrupt NGINX worker memory, resulting in its crash or potential other impact using a specially crafted audio or video file. The issu...
CVE-2022-41743
creationtimestamp| type| source ---|---|--- 2022-10-20 02:20:59+00:00| seen| https://t.me/cibsecurity/51855 2025-05-08 18:24:11+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/15570...
CVE-2022-41743
The CVE-2022-41743 issue affects NGINX Plus versions R27 P1 and R26 P1 with the ngx_http_hls_module. A local attacker could trigger processing of a specially crafted audio/video file to corrupt NGINX worker memory, causing a crash or other impact. Exploitation is Local, requires low privileges, n...