Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
f5 njs vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-34028
Nginx NJS v0.7.5 exists to contain a segmentation violation via njs_utf8_next at src/njs_utf8.h.
F5 Njs 0.7.5
7.5
CVSSv3
CVE-2022-34030
Nginx NJS v0.7.5 exists to contain a segmentation violation via njs_djb_hash at src/njs_djb_hash.c.
F5 Njs 0.7.5
7.5
CVSSv3
CVE-2022-34031
Nginx NJS v0.7.5 exists to contain a segmentation violation via njs_value_to_number at src/njs_value_conversion.h.
F5 Njs 0.7.5
7.5
CVSSv3
CVE-2022-34032
Nginx NJS v0.7.5 exists to contain a segmentation violation in the function njs_value_own_enumerate at src/njs_value.c.
F5 Njs 0.7.5
7.5
CVSSv3
CVE-2022-29369
Nginx NJS v0.7.2 exists to contain a segmentation violation via njs_lvlhsh_bucket_find at njs_lvlhsh.c.
F5 Njs 0.7.2
7.5
CVSSv3
CVE-2022-27008
nginx njs 0.7.2 is vulnerable to Buffer Overflow. Type confused in Array.prototype.concat() when a slow array appended element is fast array.
F5 Njs 0.7.2
7.5
CVSSv3
CVE-2021-46462
njs up to and including 0.7.1, used in NGINX, exists to contain a segmentation violation via njs_object_set_prototype in /src/njs_object.c.
F5 Njs
7.5
CVSSv3
CVE-2019-11837
njs up to and including 0.3.1, used in NGINX, has a segmentation fault in String.prototype.toBytes for negative arguments, related to nxt_utf8_next in nxt/nxt_utf8.h and njs_string_offset in njs/njs_string.c.
F5 Njs
6.5
CVSSv3
CVE-2019-13617
njs up to and including 0.3.3, used in NGINX, has a heap-based buffer over-read in nxt_vsprintf in nxt/nxt_sprintf.c during error handling, as demonstrated by an njs_regexp_literal call that leads to an njs_parser_lexer_error call and then an njs_parser_scope_error call.
F5 Njs
5.5
CVSSv3
CVE-2022-38890
Nginx NJS v0.7.7 exists to contain a segmentation violation via njs_utf8_next at src/njs_utf8.h
F5 Njs 0.7.7
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »