CVE-2022-27007

EPSS 0.50% · P66 Updated Feb 25, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2022-27007

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

nginx njs 0.7.2 is affected suffers from Use-after-free in njs_function_frame_alloc() when it try to invoke from a restored frame saved with njs_function_frame_save().

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Nginx 资源管理错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Nginx是美国Nginx公司的一款轻量级Web服务器/反向代理服务器及电子邮件（IMAP/POP3）代理服务器。 Nginx njs 0.7.2 版本存在安全漏洞，该漏洞源于 njs_await_fulfilled 存在释放后引用问题。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2022-27007

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2022-27007

请登录查看更多情报信息。

https://github.com/nginx/njs/commit/ad48705bf1f04b4221a5f5b07715ac48b3160d53x_refsource_MISC
https://security.netapp.com/advisory/ntap-20220519-0008/x_refsource_CONFIRM
https://github.com/nginx/njs/issues/469x_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2022-27007

Same Patch Batch · n/a · 2022-04-14 · 30 CVEs total

CVE-2022-27451		MariaDB 安全漏洞
CVE-2021-43287		ThoughtWorks GoCD 信息泄露漏洞
CVE-2022-26507		AT&T Labs Xmill 缓冲区错误漏洞
CVE-2021-43633		Messaging Web Application 跨站脚本漏洞
CVE-2021-43290		ThoughtWorks GoCD 路径遍历漏洞
CVE-2021-43289		ThoughtWorks GoCD 路径遍历漏洞
CVE-2021-43288		ThoughtWorks GoCD 跨站脚本漏洞
CVE-2021-43286		ThoughtWorks GoCD 命令注入漏洞
CVE-2022-27444		MariaDB 安全漏洞
CVE-2022-27445		MariaDB 安全漏洞
CVE-2022-27447		MariaDB 资源管理错误漏洞
CVE-2022-27446		MariaDB 安全漏洞
CVE-2022-27449		MariaDB 安全漏洞
CVE-2022-27448		MariaDB 安全漏洞
CVE-2022-27452		MariaDB 安全漏洞
CVE-2022-22968		Vmware Spring Framework 安全特征问题漏洞
CVE-2022-27455		MariaDB 资源管理错误漏洞
CVE-2022-27457		MariaDB 资源管理错误漏洞
CVE-2022-27456		MariaDB 资源管理错误漏洞
CVE-2021-45228		COINS Construction Cloud 跨站脚本漏洞

Showing top 20 of 30 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2022-27007

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2022-27007

I. Basic Information for CVE-2022-27007

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2022-27007

III. Intelligence Information for CVE-2022-27007

Same Patch Batch · n/a · 2022-04-14 · 30 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2022-27007

Leave a comment