Vulnerabilities > CVE-2022-31307 - Use After Free vulnerability in F5 NJS 0.7.2

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
f5
CWE-416

Summary

Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_string_offset at src/njs_string.c.

Vulnerable Configurations

Part Description Count
Application
F5
1

Common Weakness Enumeration (CWE)