According to its Server response header, the installed version of nginx is 1.9.5 to 1.16.0 or 1.17.x prior to 1.17.3. It is, therefore, affected by the following issues :
An excessive CPU usage in HTTP/2 with small window updates exists related to the module ‘ngx_http_v2_module’. (CVE-2019-9511)
An excessive CPU usage in HTTP/2 with priority changes exists related to the module ‘ngx_http_v2_module’. (CVE-2019-9513)
An excessive CPU usage in HTTP/2 with zero length headers exists related to the module ‘ngx_http_v2_module’. (CVE-2019-9516)
Note that the scanner has not tested for these issues but has instead relied only on the application’s self-reported version number.
No source data