Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/26 12:0 a.m.13 views

Fedora 44 : nginx / nginx-mod-brotli / nginx-mod-fancyindex / etc (2026-b8e751787c)

The remote Fedora 44 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2026-b8e751787c advisory. nginx-mod-brotli: - Rebuild for 1.30.3 nginx-mod-fancyindex: - Rebuild for 1.30.3 nginx-mod-vts: - Rebuild for 1.30.3 nginx-mod-modsecurity: - Rebui...

9.2CVSS6.1AI score0.03225EPSS
Exploits4References4
SUSE CVE
SUSE CVE
added 2026/06/19 1:52 a.m.9 views

SUSE CVE-2026-42530

NGINX Open Source has a vulnerability in the ngxhttpv3module module. When NGINX Open Source is configured to use the HTTP/3 QUIC module, a remote unauthenticated attacker along with conditions beyond their control can use a specially crafted HTTP/3 session to reopen a QPACK encoder stream. This m...

8.1CVSS6.3AI score0.03225EPSS
Exploits3References3
The Hacker News
The Hacker News
added 2026/06/18 5:32 p.m.14 views

F5 Patches Two Critical NGINX Open Source Flaws Enabling Remote Code Execution

F5 has released security updates to address two critical security flaws in NGINX Open Source that could be exploited to achieve code execution on affected systems. The vulnerabilities are listed below - CVE-2026-42530 CVSS v4 score: 9.2 - A use-after-free vulnerability in the ngxhttpv3module that...

9.2CVSS6.8AI score0.03225EPSS
Exploits4
Circl
Circl
added 2026/06/17 5:58 p.m.10 views

CVE-2026-42530

creationtimestamp| type| source ---|---|--- 2026-06-17 17:58:34+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3moivbi45fe2b 2026-06-17 18:03:06+00:00| seen| https://bsky.app/profile/crustytldr.bsky.social/post/3moivjizel522 2026-06-17 21:00:00+00:00| seen|...

9.2CVSS6AI score0.03225EPSS
Exploits3References31
Nginx
Nginx
added 2026/06/17 2:4 p.m.52 views

Use-after-free in HTTP/3

Use-after-free in HTTP/3 Severity: major CVE-2026-42530 Not vulnerable: 1.31.2+ Vulnerable: 1.31.0-1.31.1...

9.2CVSS5.2AI score0.03225EPSS
Exploits3References1Affected Software1
CVE
CVE
added 2026/06/17 2:4 p.m.249 views

CVE-2026-42530

Summary : NGINX Open Source’s ngx_http_v3_module vulnerability (CVE-2026-42530) occurs when HTTP/3 QUIC is enabled. A remote unauthenticated attacker can craft an HTTP/3 session to reopen a QPACK encoder stream, causing a Use-after-Free in the NGINX worker process and potentially triggering a res...

9.2CVSS5.7AI score0.03225EPSS
Exploits3References4Affected Software4
F5 Networks
F5 Networks
added 2026/06/17 1:45 p.m.34 views

K000161616: NGINX ngx_http_v3_module vulnerability CVE-2026-42530

Security Advisory Description NGINX Open Source has a vulnerability in the ngxhttpv3module module. When NGINX Open Source is configured to use the HTTP/3 QUIC module, a remote unauthenticated attacker along with conditions beyond their control can use a specially crafted HTTP/3 session to reopen ...

9.2CVSS6.3AI score0.03225EPSS
Exploits3Affected Software4
Rows per page
Query Builder