njs through 0.3.3, used in NGINX, has a buffer over-read in nxt_utf8_decode in nxt/nxt_utf8.c. This issue occurs after the fix for CVE-2019-12207 is in place.
References
Link | Resource |
---|---|
https://github.com/nginx/njs/issues/183 | Exploit Issue Tracking Third Party Advisory |
Configurations
Information
Published : 2019-06-29 17:15
Updated : 2022-03-24 07:23
NVD link : CVE-2019-13067
Mitre link : CVE-2019-13067
JSON object : View
CWE
CWE-125
Out-of-bounds Read
Products Affected
f5
- njs