Njs Security Vulnerabilities and Issues — Njs CVE List

Lucene search

F5Njs

16 matches found

CVE•added 2022/02/14 10:15 p.m.•105 views

CVE-2021-46462

njs through 0.7.1, used in NGINX, was discovered to contain a segmentation violation via njs_object_set_prototype in /src/njs_object.c.

7.5CVSS7.5AI score0.00493EPSS

CVE•added 2022/07/18 9:15 p.m.•78 views

CVE-2022-34031

Nginx NJS v0.7.5 was discovered to contain a segmentation violation via njs_value_to_number at src/njs_value_conversion.h.

7.5CVSS7.5AI score0.0024EPSS

CVE•added 2022/10/28 9:15 p.m.•76 views

CVE-2022-43284

Nginx NJS v0.7.2 to v0.7.4 was discovered to contain a segmentation violation via njs_scope_valid_value at njs_scope.h. NOTE: the vendor disputes the significance of this report because NJS does not operate on untrusted input.

7.5CVSS7.5AI score0.00055EPSS

CVE•added 2022/04/14 3:15 p.m.•74 views

CVE-2022-27008

nginx njs 0.7.2 is vulnerable to Buffer Overflow. Type confused in Array.prototype.concat() when a slow array appended element is fast array.

7.5CVSS7.4AI score0.00397EPSS

CVE•added 2022/10/28 9:15 p.m.•74 views

CVE-2022-43285

Nginx NJS v0.7.4 was discovered to contain a segmentation violation in njs_promise_reaction_job. NOTE: the vendor disputes the significance of this report because NJS does not operate on untrusted input.

7.5CVSS7.5AI score0.00057EPSS

CVE•added 2020/08/13 7:15 p.m.•72 views

CVE-2020-24346

njs through 0.4.3, used in NGINX, has a use-after-free in njs_json_parse_iterator_call in njs_json.c.

7.8CVSS7.6AI score0.00152EPSS

CVE•added 2022/07/18 9:15 p.m.•68 views

CVE-2022-34028

Nginx NJS v0.7.5 was discovered to contain a segmentation violation via njs_utf8_next at src/njs_utf8.h.

7.5CVSS7.5AI score0.00313EPSS

CVE•added 2022/05/12 7:15 p.m.•67 views

CVE-2022-29369

Nginx NJS v0.7.2 was discovered to contain a segmentation violation via njs_lvlhsh_bucket_find at njs_lvlhsh.c.

7.5CVSS7.5AI score0.00389EPSS

CVE•added 2022/07/18 9:15 p.m.•64 views

CVE-2022-34032

Nginx NJS v0.7.5 was discovered to contain a segmentation violation in the function njs_value_own_enumerate at src/njs_value.c.

7.5CVSS7.5AI score0.00262EPSS

CVE•added 2022/07/18 9:15 p.m.•61 views

CVE-2022-34027

Nginx NJS v0.7.4 was discovered to contain a segmentation violation via njs_value_property at njs_value.c.

7.5CVSS7.5AI score0.00373EPSS

CVE•added 2022/07/18 9:15 p.m.•60 views

CVE-2022-34030

Nginx NJS v0.7.5 was discovered to contain a segmentation violation via njs_djb_hash at src/njs_djb_hash.c.

7.5CVSS7.5AI score0.0024EPSS

CVE•added 2023/04/09 8:15 p.m.•47 views

CVE-2023-27729

Nginx NJS v0.7.10 was discovered to contain an illegal memcpy via the function njs_vmcode_return at src/njs_vmcode.c.

7.5CVSS7.5AI score0.00077EPSS

CVE•added 2023/04/09 8:15 p.m.•45 views

CVE-2023-27727

Nginx NJS v0.7.10 was discovered to contain a segmentation violation via the function njs_function_frame at src/njs_function.h.

7.5CVSS7.5AI score0.00057EPSS

CVE•added 2023/04/09 8:15 p.m.•45 views

CVE-2023-27728

Nginx NJS v0.7.10 was discovered to contain a segmentation violation via the function njs_dump_is_recursive at src/njs_vmcode.c.

7.5CVSS7.5AI score0.00057EPSS

CVE•added 2019/05/09 2:29 p.m.•39 views

CVE-2019-11837

njs through 0.3.1, used in NGINX, has a segmentation fault in String.prototype.toBytes for negative arguments, related to nxt_utf8_next in nxt/nxt_utf8.h and njs_string_offset in njs/njs_string.c.

7.5CVSS7.4AI score0.00283EPSS

CVE•added 2023/04/09 8:15 p.m.•39 views

CVE-2023-27730

Nginx NJS v0.7.10 was discovered to contain a segmentation violation via the function njs_lvlhsh_find at src/njs_lvlhsh.c.

7.5CVSS7.5AI score0.00057EPSS