Vulnerabilities > Nginx

DATE CVE VULNERABILITY TITLE RISK
2023-04-04 CVE-2020-19692 Classic Buffer Overflow vulnerability in Nginx NJS 20190627
Buffer Overflow vulnerabilty found in Nginx NJS v.0feca92 allows a remote attacker to execute arbitrary code via the njs_module_read in the njs_module.c file.
network
low complexity
nginx CWE-120
critical
9.8
2023-04-04 CVE-2020-19695 Classic Buffer Overflow vulnerability in Nginx NJS
Buffer Overflow found in Nginx NJS allows a remote attacker to execute arbitrary code via the njs_object_property parameter of the njs/njs_vm.c function.
network
low complexity
nginx CWE-120
critical
9.8
2022-08-18 CVE-2022-35173 Improper Check for Unusual or Exceptional Conditions vulnerability in Nginx NJS 0.7.5
An issue was discovered in Nginx NJS v0.7.5.
network
low complexity
nginx CWE-754
7.5
2022-06-02 CVE-2022-29779 Unspecified vulnerability in Nginx NJS 0.7.2
Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_value_own_enumerate at src/njs_value.c.
local
low complexity
nginx
5.5
2022-06-02 CVE-2022-29780 Unspecified vulnerability in Nginx NJS 0.7.2
Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_array_prototype_sort at src/njs_array.c.
local
low complexity
nginx
5.5
2022-06-02 CVE-2022-30503 Unspecified vulnerability in Nginx NJS 0.7.2
Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_set_number at src/njs_value.h.
local
low complexity
nginx
5.5
2022-02-14 CVE-2021-46461 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Nginx NJS
njs through 0.7.0, used in NGINX, was discovered to contain an out-of-bounds array access via njs_vmcode_typeof in /src/njs_vmcode.c.
network
low complexity
nginx CWE-119
critical
9.8
2019-02-08 CVE-2019-7401 Out-of-bounds Write vulnerability in Nginx Unit
NGINX Unit before 1.7.1 might allow an attacker to cause a heap-based buffer overflow in the router process with a specially crafted request.
network
low complexity
nginx CWE-787
critical
9.8