Description

Nginx NJS v0.7.10 was discovered to contain a segmentation violation via the function njs_dump_is_recursive at src/njs_vmcode.c.

Remediation

References

CVE-2023-27728

Related Vulnerabilities

Apache HTTP Server Improper Input Validation Vulnerability (CVE-2016-2161)

Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-6631)

WordPress Plugin Appointment Booking Calendar SQL Injection (1.1.23)

PHP Other Vulnerability (CVE-2005-1042)

WordPress Plugin File Manager Remote Code Execution (4.5)

Severity

High

Classification

CVE-2023-27728 CWE-125 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities