Vulnerabilities > CVE-2022-43285 - Unspecified vulnerability in F5 NJS 0.7.4

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

NVD

Published: 2022-10-28

Updated: 2024-04-11

Summary

Nginx NJS v0.7.4 was discovered to contain a segmentation violation in njs_promise_reaction_job. NOTE: the vendor disputes the significance of this report because NJS does not operate on untrusted input.

Vulnerable Configurations

Part	Description	Count
Application	F5 F5 NJS 0.7.4	1

References

https://github.com/nginx/njs/issues/533