Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

Nginx Use After Free Vulnerability (CVE-2022-32414)

Description

Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_vmcode_interpreter at src/njs_vmcode.c.

Remediation

References

Related Vulnerabilities

WordPress Plugin Woocommerce Categories in gallery format Cross-Site Scripting (1.0.1)

WordPress Plugin WP Popup Banners includes Backdoor [Only if downloaded via the vendor website] (1.2.3)

Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2007-6752)

WordPress Plugin VDZ VERIFICATION (Custom Meta Tags) Cross-Site Scripting (1.3.12)

Oracle Database Server CVE-2009-1021 Vulnerability (CVE-2009-1021)

Severity

Medium

Classification

CVE-2022-32414 CWE-416 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities