Vulnerabilities > Nginx
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-02 | CVE-2022-29779 | Unspecified vulnerability in Nginx NJS 0.7.2 Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_value_own_enumerate at src/njs_value.c. | 2.1 |
| 2022-06-02 | CVE-2022-29780 | Unspecified vulnerability in Nginx NJS 0.7.2 Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_array_prototype_sort at src/njs_array.c. | 2.1 |
| 2022-06-02 | CVE-2022-30503 | Unspecified vulnerability in Nginx NJS 0.7.2 Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_set_number at src/njs_value.h. | 2.1 |
| 2022-02-14 | CVE-2021-46461 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Nginx NJS njs through 0.7.0, used in NGINX, was discovered to contain an out-of-bounds array access via njs_vmcode_typeof in /src/njs_vmcode.c. | 7.5 |
| 2019-02-08 | CVE-2019-7401 | Out-of-bounds Write vulnerability in Nginx Unit NGINX Unit before 1.7.1 might allow an attacker to cause a heap-based buffer overflow in the router process with a specially crafted request. | 7.5 |
| 2009-11-24 | CVE-2009-3898 | Path Traversal vulnerability in multiple products Directory traversal vulnerability in src/http/modules/ngx_http_dav_module.c in nginx (aka Engine X) before 0.7.63, and 0.8.x before 0.8.17, allows remote authenticated users to create or overwrite arbitrary files via a .. | 4.9 |
| 2009-11-24 | CVE-2009-3896 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products src/http/ngx_http_parse.c in nginx (aka Engine X) 0.1.0 through 0.4.14, 0.5.x before 0.5.38, 0.6.x before 0.6.39, 0.7.x before 0.7.62, and 0.8.x before 0.8.14 allows remote attackers to cause a denial of service (NULL pointer dereference and worker process crash) via a long URI. | 5.0 |