Njs@* Security Vulnerabilities and Issues — Njs@* CVE List

Lucene search

F5Njs*

4 matches found

CVE•added 2022/02/14 10:15 p.m.•183 views

CVE-2022-25139

njs through 0.7.0, used in NGINX, was discovered to contain a heap use-after-free in njs_await_fulfilled.

9.8CVSS9.5AI score0.00477EPSS

CVE•added 2022/02/14 10:15 p.m.•143 views

CVE-2021-46463

njs through 0.7.1, used in NGINX, was discovered to contain a control flow hijack caused by a Type Confusion vulnerability in njs_promise_perform_then().

9.8CVSS9.4AI score0.00434EPSS

CVE•added 2022/02/14 10:15 p.m.•105 views

CVE-2021-46462

njs through 0.7.1, used in NGINX, was discovered to contain a segmentation violation via njs_object_set_prototype in /src/njs_object.c.

7.5CVSS7.5AI score0.00493EPSS

CVE•added 2022/10/28 9:15 p.m.•76 views

CVE-2022-43284

Nginx NJS v0.7.2 to v0.7.4 was discovered to contain a segmentation violation via njs_scope_valid_value at njs_scope.h. NOTE: the vendor disputes the significance of this report because NJS does not operate on untrusted input.

7.5CVSS7.5AI score0.00055EPSS