Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
njs vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-12207
njs up to and including 0.3.1, used in NGINX, has a heap-based buffer over-read in nxt_utf8_decode in nxt/nxt_utf8.c.
F5 Njs
9.8
CVSSv3
CVE-2019-12208
njs up to and including 0.3.1, used in NGINX, has a heap-based buffer overflow in njs_function_native_call in njs/njs_function.c.
F5 Njs
9.8
CVSSv3
CVE-2019-11838
njs up to and including 0.3.1, used in NGINX, has a heap-based buffer overflow in Array.prototype.splice after a resize, related to njs_array_prototype_splice in njs/njs_array.c, because of njs_array_expand size mishandling.
F5 Njs
9.8
CVSSv3
CVE-2019-11839
njs up to and including 0.3.1, used in NGINX, has a heap-based buffer overflow in Array.prototype.push after a resize, related to njs_array_prototype_push in njs/njs_array.c, because of njs_array_expand size mishandling.
F5 Njs
9.1
CVSSv3
CVE-2022-34029
Nginx NJS v0.7.4 exists to contain an out-of-bounds read via njs_scope_value at njs_scope.h.
F5 Njs 0.7.4
7.8
CVSSv3
CVE-2020-24346
njs up to and including 0.4.3, used in NGINX, has a use-after-free in njs_json_parse_iterator_call in njs_json.c.
F5 Njs
7.5
CVSSv3
CVE-2023-27727
Nginx NJS v0.7.10 exists to contain a segmentation violation via the function njs_function_frame at src/njs_function.h.
F5 Njs 0.7.10
7.5
CVSSv3
CVE-2023-27728
Nginx NJS v0.7.10 exists to contain a segmentation violation via the function njs_dump_is_recursive at src/njs_vmcode.c.
F5 Njs 0.7.10
7.5
CVSSv3
CVE-2023-27729
Nginx NJS v0.7.10 exists to contain an illegal memcpy via the function njs_vmcode_return at src/njs_vmcode.c.
F5 Njs 0.7.10
7.5
CVSSv3
CVE-2023-27730
Nginx NJS v0.7.10 exists to contain a segmentation violation via the function njs_lvlhsh_find at src/njs_lvlhsh.c.
F5 Njs 0.7.10
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »