CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-35173

An issue was discovered in Nginx NJS v0.7.5. The JUMP offset for a break instruction was not set to a correct offset during code generation, leading to a segmentation violation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 34.6%

CVSS Severity

CVSS v3 Score 7.5

References

http://hg.nginx.org/njs/rev/b7c4e0f714a9
https://github.com/nginx/njs/commit/404553896792b8f5f429dc8852d15784a59d8d3e
https://github.com/nginx/njs/issues/553
http://hg.nginx.org/njs/rev/b7c4e0f714a9
https://github.com/nginx/njs/commit/404553896792b8f5f429dc8852d15784a59d8d3e
https://github.com/nginx/njs/issues/553

Products affected by CVE-2022-35173

Nginx » Njs » Version: 0.7.5

cpe:2.3:a:nginx:njs:0.7.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-35173

Products

Pricing

Contact Us