Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2020-24349

njs through 0.4.3, used in NGINX, allows control-flow hijack in njs_value_property in njs_value.c. NOTE: the vendor considers the issue to be "fluff" in the NGINX use case because there is no remote attack surface.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 33.1%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 2.1
Products affected by CVE-2020-24349
  • F5 » Njs » Version: 0.1.0
    cpe:2.3:a:f5:njs:0.1.0
  • F5 » Njs » Version: 0.1.1
    cpe:2.3:a:f5:njs:0.1.1
  • F5 » Njs » Version: 0.1.10
    cpe:2.3:a:f5:njs:0.1.10
  • F5 » Njs » Version: 0.1.11
    cpe:2.3:a:f5:njs:0.1.11
  • F5 » Njs » Version: 0.1.12
    cpe:2.3:a:f5:njs:0.1.12
  • F5 » Njs » Version: 0.1.13
    cpe:2.3:a:f5:njs:0.1.13
  • F5 » Njs » Version: 0.1.14
    cpe:2.3:a:f5:njs:0.1.14
  • F5 » Njs » Version: 0.1.15
    cpe:2.3:a:f5:njs:0.1.15
  • F5 » Njs » Version: 0.1.2
    cpe:2.3:a:f5:njs:0.1.2
  • F5 » Njs » Version: 0.1.3
    cpe:2.3:a:f5:njs:0.1.3
  • F5 » Njs » Version: 0.1.4
    cpe:2.3:a:f5:njs:0.1.4
  • F5 » Njs » Version: 0.1.5
    cpe:2.3:a:f5:njs:0.1.5
  • F5 » Njs » Version: 0.1.6
    cpe:2.3:a:f5:njs:0.1.6
  • F5 » Njs » Version: 0.1.7
    cpe:2.3:a:f5:njs:0.1.7
  • F5 » Njs » Version: 0.1.8
    cpe:2.3:a:f5:njs:0.1.8
  • F5 » Njs » Version: 0.1.9
    cpe:2.3:a:f5:njs:0.1.9
  • F5 » Njs » Version: 0.2.0
    cpe:2.3:a:f5:njs:0.2.0
  • F5 » Njs » Version: 0.2.1
    cpe:2.3:a:f5:njs:0.2.1
  • F5 » Njs » Version: 0.2.2
    cpe:2.3:a:f5:njs:0.2.2
  • F5 » Njs » Version: 0.2.3
    cpe:2.3:a:f5:njs:0.2.3
  • F5 » Njs » Version: 0.2.4
    cpe:2.3:a:f5:njs:0.2.4
  • F5 » Njs » Version: 0.2.5
    cpe:2.3:a:f5:njs:0.2.5
  • F5 » Njs » Version: 0.2.6
    cpe:2.3:a:f5:njs:0.2.6
  • F5 » Njs » Version: 0.2.7
    cpe:2.3:a:f5:njs:0.2.7
  • F5 » Njs » Version: 0.2.8
    cpe:2.3:a:f5:njs:0.2.8
  • F5 » Njs » Version: 0.3.0
    cpe:2.3:a:f5:njs:0.3.0
  • F5 » Njs » Version: 0.3.1
    cpe:2.3:a:f5:njs:0.3.1
  • F5 » Njs » Version: 0.3.2
    cpe:2.3:a:f5:njs:0.3.2
  • F5 » Njs » Version: 0.3.3
    cpe:2.3:a:f5:njs:0.3.3
  • F5 » Njs » Version: 0.3.4
    cpe:2.3:a:f5:njs:0.3.4
  • F5 » Njs » Version: 0.3.5
    cpe:2.3:a:f5:njs:0.3.5
  • F5 » Njs » Version: 0.3.6
    cpe:2.3:a:f5:njs:0.3.6
  • F5 » Njs » Version: 0.3.7
    cpe:2.3:a:f5:njs:0.3.7
  • F5 » Njs » Version: 0.3.8
    cpe:2.3:a:f5:njs:0.3.8
  • F5 » Njs » Version: 0.3.9
    cpe:2.3:a:f5:njs:0.3.9
  • F5 » Njs » Version: 0.4.0
    cpe:2.3:a:f5:njs:0.4.0
  • F5 » Njs » Version: 0.4.1
    cpe:2.3:a:f5:njs:0.4.1
  • F5 » Njs » Version: 0.4.2
    cpe:2.3:a:f5:njs:0.4.2
  • F5 » Njs » Version: 0.4.3
    cpe:2.3:a:f5:njs:0.4.3


Products
Pricing
Contact Us

Shodan ® - All rights reserved