CVE-2026-28753 NGINX ngx_mail_proxy_module vulnerability

🗓️ 24 Mar 2026 14:13:26Reported by f5Type

CVE-2026-28753: NGINX SMTP proxy exposes header injection via CRLF in domain name system responses.

Reporter	Title	Published	Views	Family All 69
ATTACKERKB	CVE-2026-28753	24 Mar 202614:13	–	attackerkb
Tenable Nessus	Amazon Linux 2023 : nginx, nginx-all-modules, nginx-core (ALAS2023-2026-1540)	13 Apr 202600:00	–	nessus
Tenable Nessus	Amazon Linux 2 : nginx, --advisory ALAS2NGINX1-2026-011 (ALASNGINX1-2026-011)	14 Apr 202600:00	–	nessus
Tenable Nessus	Debian dla-4589 : libnginx-mod-http-auth-pam - security update	18 May 202600:00	–	nessus
Tenable Nessus	Fedora 44 : nginx / nginx-mod-brotli / nginx-mod-fancyindex / etc (2026-4de4d247a0)	29 Apr 202600:00	–	nessus
Tenable Nessus	nginx 0.6.27 < 1.28.3 / 1.29.x < 1.29.7 SMTP Upstream Injection	16 Apr 202600:00	–	nessus
Tenable Nessus	SUSE SLES15 Security Update : nginx (SUSE-SU-2026:1761-1)	10 May 202600:00	–	nessus
Tenable Nessus	SUSE SLES15 Security Update : nginx (SUSE-SU-2026:1953-1)	19 May 202600:00	–	nessus
Tenable Nessus	TencentOS Server 4: nginx (TSSA-2026:0275)	8 Jun 202600:00	–	nessus
Tenable Nessus	Ubuntu 22.04 LTS / 24.04 LTS / 25.10 : nginx vulnerabilities (USN-8210-1)	28 Apr 202600:00	–	nessus

[
  {
    "vendor": "F5",
    "product": "NGINX Open Source",
    "modules": [
      "ngx_mail_proxy_module"
    ],
    "versions": [
      {
        "status": "affected",
        "version": "1.29.0",
        "lessThan": "1.29.7",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "0.6.27",
        "lessThan": "1.28.3",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "F5",
    "product": "NGINX Plus",
    "modules": [
      "ngx_mail_proxy_module"
    ],
    "versions": [
      {
        "status": "affected",
        "version": "R36",
        "lessThan": "R36 P3",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "R35",
        "lessThan": "R35 P2",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "R34",
        "lessThan": "*",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "R33",
        "lessThan": "*",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "R32",
        "lessThan": "R32 P5",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Source	Link
my	www.my.f5.com/manage/s/article/K000160367

24 Mar 2026 14:49Current

CVSS 3.13.7

CVSS 46.3

EPSS0.00031

CWE-93