CVE-2024-39792
EUVD-2024-3823714.08.2024, 15:15
When the NGINX Plus is configured to use the MQTT pre-read module, undisclosed requests can cause an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.Enginsight
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
| Vendor | Product | Version | Source |
|---|---|---|---|
| f5 | nginx_plus | r30 ≤ 𝑥 < r32_p1 | ADP |
| f5 | nginx_plus | r30 ≤ 𝑥 < r31_p3 | ADP |
Debian Releases
Common Weakness Enumeration
- CWE-825 - Expired Pointer DereferenceThe program dereferences a pointer that contains a location for memory that was previously valid, but is no longer valid.
- CWE-672 - Operation on a Resource after Expiration or ReleaseThe software uses, accesses, or otherwise operates on a resource after that resource has been expired, released, or revoked.