njs through 0.4.3, used in NGINX, allows control-flow hijack in njs_value_property in njs_value.c. NOTE: the vendor considers the issue to be «fluff» in the NGINX use case because there is no remote attack surface.
