Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nginx vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-35173
An issue exists in Nginx NJS v0.7.5. The JUMP offset for a break instruction was not set to a correct offset during code generation, leading to a segmentation violation.
Nginx Njs 0.7.5
NA
CVE-2022-35241
In versions 2.x prior to 2.3.1 and all versions of 1.x, when NGINX Instance Manager is in use, undisclosed requests can cause an increase in disk resource utilization. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
F5 Nginx Instance Manager
NA
CVE-2022-30535
In versions 2.x prior to 2.3.0 and all versions of 1.x, An attacker authorized to create or update ingress objects can obtain the secrets available to the NGINX Ingress Controller. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
F5 Nginx Ingress Controller
NA
CVE-2022-31182
Discourse is the an open source discussion platform. In affected versions a maliciously crafted request for static assets could cause error responses to be cached by Discourse's default NGINX proxy configuration. A corrected NGINX configuration is included in the latest stab...
Discourse Discourse
Discourse Discourse 2.9.0
NA
CVE-2022-34027
Nginx NJS v0.7.4 exists to contain a segmentation violation via njs_value_property at njs_value.c.
F5 Njs 0.7.4
NA
CVE-2022-34031
Nginx NJS v0.7.5 exists to contain a segmentation violation via njs_value_to_number at src/njs_value_conversion.h.
F5 Njs 0.7.5
NA
CVE-2022-34028
Nginx NJS v0.7.5 exists to contain a segmentation violation via njs_utf8_next at src/njs_utf8.h.
F5 Njs 0.7.5
NA
CVE-2022-34029
Nginx NJS v0.7.4 exists to contain an out-of-bounds read via njs_scope_value at njs_scope.h.
F5 Njs 0.7.4
NA
CVE-2022-34030
Nginx NJS v0.7.5 exists to contain a segmentation violation via njs_djb_hash at src/njs_djb_hash.c.
F5 Njs 0.7.5
NA
CVE-2022-34032
Nginx NJS v0.7.5 exists to contain a segmentation violation in the function njs_value_own_enumerate at src/njs_value.c.
F5 Njs 0.7.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »