📦

njs

Vendor: nginx

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 5 Total Indexed

Avg. EPSS 0.26% Exploit Prob.

Latest CVE CVE-2022-35173 Aug 18

Security Vulnerability Index

Page 1 / 1

7.5 CVSS

CVE-2022-35173

An issue was discovered in Nginx NJS v0.7.5. The JUMP offset for a break instruction was not set to a correct offset during code generation, leading to a segmentation violation.

EPSS: 0.40%

Severity: HIGH

Aug 18, 2022

5.5 CVSS

CVE-2022-30503

Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_set_number at src/njs_value.h.

EPSS: 0.05%

Severity: MEDIUM

Jun 02, 2022

5.5 CVSS

CVE-2022-29780

Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_array_prototype_sort at src/njs_array.c.

EPSS: 0.05%

Severity: MEDIUM

Jun 02, 2022

5.5 CVSS

CVE-2022-29779

Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_value_own_enumerate at src/njs_value.c.

EPSS: 0.05%

Severity: MEDIUM

Jun 02, 2022

9.8 CVSS

CVE-2021-46461

njs through 0.7.0, used in NGINX, was discovered to contain an out-of-bounds array access via njs_vmcode_typeof in /src/njs_vmcode.c.

EPSS: 0.72%

Severity: CRITICAL

Feb 14, 2022

Displaying 5 of 5 Total Entries

Total 1 Sections