CVE-2022-34031 — F5 NJS vulnerability

3 documents3 sources
Severity
7.5HIGHNVD
EPSS
0.3%
top 51.33%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
F5 NJS
Timeline
PublishedJul 18
Latest updateJul 19

Description

Nginx NJS v0.7.5 was discovered to contain a segmentation violation via njs_value_to_number at src/njs_value_conversion.h.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages1 packages

â–¶NVDf5/njs0.7.5

🔴Vulnerability Details

2
GHSA
GHSA-w8rq-cxq6-pq8p: Nginx NJS v0↗2022-07-19
â–¶
CVEList
CVE-2022-34031: Nginx NJS v0↗2022-07-18
â–¶
CVE-2022-34031 — F5 NJS vulnerability | cvebase