Vulnerabilities > CVE-2022-28049 - NULL Pointer Dereference vulnerability in F5 NJS 0.7.2

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
f5
CWE-476
NVD
Published: 2022-04-15
Updated: 2022-07-01

Summary

NGINX NJS 0.7.2 was discovered to contain a NULL pointer dereference via the component njs_vmcode_array at /src/njs_vmcode.c.

Vulnerable Configurations

Part Description Count
Application
F5
1

Common Weakness Enumeration (CWE)

References