Lucene search
+L

413 matches found

Prion
Prion
added 2019/05/09 2:29 p.m.20 views

Code injection

njs through 0.3.1, used in NGINX, has a segmentation fault in String.prototype.toBytes for negative arguments, related to nxtutf8next in nxt/nxtutf8.h and njsstringoffset in njs/njsstring.c...

5CVSS7.5AI score0.01379EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2019/05/09 2:29 p.m.28 views

CVE-2019-11839

njs through 0.3.1, used in NGINX, has a heap-based buffer overflow in Array.prototype.push after a resize, related to njsarrayprototypepush in njs/njsarray.c, because of njsarrayexpand size mishandling...

9.8CVSS9.7AI score0.01643EPSS
Exploits1References1
NVD
NVD
added 2019/05/09 2:29 p.m.25 views

CVE-2019-11838

njs through 0.3.1, used in NGINX, has a heap-based buffer overflow in Array.prototype.splice after a resize, related to njsarrayprototypesplice in njs/njsarray.c, because of njsarrayexpand size mishandling...

9.8CVSS9.7AI score0.01598EPSS
Exploits1References1
Prion
Prion
added 2019/05/09 2:29 p.m.19 views

Heap overflow

njs through 0.3.1, used in NGINX, has a heap-based buffer overflow in Array.prototype.push after a resize, related to njsarrayprototypepush in njs/njsarray.c, because of njsarrayexpand size mishandling...

7.5CVSS9.6AI score0.01643EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2019/05/09 2:29 p.m.22 views

CVE-2019-11837

njs through 0.3.1, used in NGINX, has a segmentation fault in String.prototype.toBytes for negative arguments, related to nxtutf8next in nxt/nxtutf8.h and njsstringoffset in njs/njsstring.c...

7.5CVSS6.8AI score
Exploits0References1
OSV
OSV
added 2019/05/09 2:29 p.m.19 views

CVE-2019-11839

njs through 0.3.1, used in NGINX, has a heap-based buffer overflow in Array.prototype.push after a resize, related to njsarrayprototypepush in njs/njsarray.c, because of njsarrayexpand size mishandling...

9.8CVSS7.6AI score
Exploits0References1
OSV
OSV
added 2019/05/09 2:29 p.m.19 views

CVE-2019-11838

njs through 0.3.1, used in NGINX, has a heap-based buffer overflow in Array.prototype.splice after a resize, related to njsarrayprototypesplice in njs/njsarray.c, because of njsarrayexpand size mishandling...

9.8CVSS7.3AI score
Exploits0References1
CVE
CVE
added 2019/05/09 1:7 p.m.65 views

CVE-2019-11839

CVE-2019-11839 affects the NGINX NJS component (njs up to 0.3.1). The vulnerability is a heap-based buffer overflow in Array.prototype.push after a resize, caused by mishandling the size in njs_array_expand (njs/njs_array.c). Red Hat and other sources confirm this is a year‑old entry, with common...

9.8CVSS9.6AI score0.01643EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/05/09 1:7 p.m.32 views

CVE-2019-11839

njs through 0.3.1, used in NGINX, has a heap-based buffer overflow in Array.prototype.push after a resize, related to njsarrayprototypepush in njs/njsarray.c, because of njsarrayexpand size mishandling...

9.7AI score0.01643EPSS
Exploits1References1
CVE
CVE
added 2019/05/09 1:7 p.m.60 views

CVE-2019-11838

CVE-2019-11838 concerns njs (used in NGINX) up to version 0.3.1, with a heap-based buffer overflow in Array.prototype.splice after a resize. The root cause is reported as mishandling the size in njs_array_expand, affecting njs_array_prototype_splice in njs/njs_array.c. Documents consistently desc...

9.8CVSS9.6AI score0.01598EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/05/09 1:7 p.m.34 views

CVE-2019-11838

njs through 0.3.1, used in NGINX, has a heap-based buffer overflow in Array.prototype.splice after a resize, related to njsarrayprototypesplice in njs/njsarray.c, because of njsarrayexpand size mishandling...

9.7AI score0.01598EPSS
Exploits1References1
CVE
CVE
added 2019/05/09 1:7 p.m.56 views

CVE-2019-11837

CVE-2019-11837 affects njs up to version 0.3.1 used in NGINX. The vulnerability is a segmentation fault in String.prototype.toBytes for negative arguments, tied to nxt_utf8_next (nxt/nxt_utf8.h) and njs_string_offset (njs/njs_string.c). The connected documents provide concrete technical details a...

7.5CVSS7.4AI score0.01379EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/05/09 1:7 p.m.32 views

CVE-2019-11837

njs through 0.3.1, used in NGINX, has a segmentation fault in String.prototype.toBytes for negative arguments, related to nxtutf8next in nxt/nxtutf8.h and njsstringoffset in njs/njsstring.c...

7.5AI score0.01379EPSS
Exploits1References1
Rows per page
Query Builder