Lucene search
K

Vulnerability of the ngx_http_mp4_module in HTTP-servers of NGINX Plus and NGINX Open Source, allowing attackers to cause service failures or execute arbitrary code.

πŸ—“οΈΒ 08 Apr 2026Β 00:00:00Reported byΒ FSTEC of Russia β€” Information Security Threat DatabaseTypeΒ 
bdu_fstec
Β bdu_fstec
πŸ”—Β bdu.fstec.ruπŸ‘Β 2Β Views

The mp4 module in nginx can read beyond buffers, risking service failure or arbitrary code execution.

Related
Detection
Refs

Data

Build on a solid foundation withΒ Vulners data

WeΒ provide theΒ essential building blocks forΒ cybersecurity solutions withΒ comprehensive, structured, andΒ constantly updated vulnerability andΒ exploits data

Api

Power your application withΒ Vulners API

The Vulners REST API offers reliable, high-performance access toΒ vulnerabilityΒ intelligence, withΒ 99.9%Β SLAΒ uptime andΒ CDN-backed data delivery forΒ seamlessΒ global access

App

Assess and manage vulnerabilities withΒ VulnersΒ tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

07 Jul 2026 00:00Current
7.7High risk
Vulners AI Score7.7
CVSS 26.8
CVSS 37.8
EPSS0.00918
2