CVE-2020-19692

CWE-120Classic Buffer Overflow4 documents4 sources
Severity
9.8CRITICAL
EPSS
5.6%
top 9.68%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
F5 NJS
Timeline
PublishedApr 4
Latest updateApr 11

Description

Buffer Overflow vulnerabilty found in Nginx NJS v.0feca92 allows a remote attacker to execute arbitrary code via the njs_module_read in the njs_module.c file.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages1 packages

NVDf5/njs< 0.3.4

🔴Vulnerability Details

2
GHSA
GHSA-87wc-7p2c-x5h9: Buffer Overflow vulnerabilty found in Nginx NJS v2023-04-04
CVEList
CVE-2020-19692: Buffer Overflow vulnerabilty found in Nginx NJS v2023-04-04

📋Vendor Advisories

1
Microsoft
Buffer Overflow vulnerabilty found in Nginx NJS v.0feca92 allows a remote attacker to execute arbitrary code via the njs_module_read in the njs_module.c file.2023-04-11
CVE-2020-19692 (CRITICAL CVSS 9.8) | Buffer Overflow vulnerabilty found | cvebase.io