njs up to and including 0.3.1, used in NGINX, has a heap-based buffer overflow in Array.prototype.splice after a resize, related to njs_array_prototype_splice in njs/njs_array.c, because of njs_array_expand size mishandling.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
f5 njs |