Lucene search
K

22 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/26 12:0 a.m.8 views

Oracle Linux 9 : nginx:1.26 (ELSA-2026-19372)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-19372 advisory. - Resolves: RHEL-176218 - nginx:1.26/nginx: NGINX: Arbitrary Code Execution Vulnerability CVE-2026-42945 - CVE-2026-32647 nginx:1.26/nginx: NGINX: Denial of...

9.2CVSS7.9AI score0.61469EPSS
Exploits40References2
Tenable Nessus
Tenable Nessus
added 2026/06/26 12:0 a.m.9 views

Oracle Linux 9 : nginx:1.26 (ELSA-2026-29151)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-29151 advisory. - nginx: code execution and denial of service CVE-2026-9256 - Resolves: RHEL-176218 - nginx:1.26/nginx: NGINX: Arbitrary Code Execution Vulnerability...

9.2CVSS8.2AI score0.61469EPSS
Exploits43References2
Tenable Nessus
Tenable Nessus
added 2026/05/22 12:0 a.m.11 views

RockyLinux 9 : nginx (RLSA-2026:7002)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:7002 advisory. nginx: NGINX: Denial of Service or Code Execution via specially crafted MP4 files CVE-2026-32647 NGINX: NGINX: Denial of Service or file modification via...

8.8CVSS7.7AI score0.21621EPSS
Exploits0References9
Oracle linux
Oracle linux
added 2026/05/19 12:0 a.m.14 views

nginx security update

2:1.20.1-24.0.1.el97.3 - Reference oracle-indexhtml within Requires Orabug: 33802044 - Remove Red Hat references Orabug: 29498217 - Update upstream references Orabug: 36579090 2:1.20.1-24.3 - Resolves: RHEL-176230 - nginx: NGINX: Arbitrary Code Execution Vulnerability CVE-2026-42945 2:1.20.1-24.2...

9.2CVSS6.2AI score0.61469EPSS
Exploits40
Tenable Nessus
Tenable Nessus
added 2026/05/19 12:0 a.m.18 views

Oracle Linux 8 : nginx:1.24 (ELSA-2026-18041)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-18041 advisory. - Resolves: RHEL-176224 - nginx:1.24/nginx: NGINX: Arbitrary Code Execution Vulnerability CVE-2026-42945 - Resolves: RHEL-157877 CVE-2026-32647 nginx:1.24/ngin...

9.2CVSS7.7AI score0.99999EPSS
Exploits69References2
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.9 views

RHEL 9 : nginx:1.26 (RHSA-2026:15966)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:15966 advisory. nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage...

8.8CVSS6.3AI score0.21621EPSS
Exploits0References10
Mageia
Mageia
added 2026/05/07 5:6 a.m.15 views

Updated nginx packages fix security vulnerabilities

Buffer overflow in ngxhttpdavmodule CVE-2026-27654 Buffer overflow in the ngxhttpmp4module CVE-2026-27784 Buffer overflow in the ngxhttpmp4module CVE-2026-32647 NULL pointer dereference while using CRAM-MD5 or APOP CVE-2026-27651 Injection in authhttp and XCLIENT CVE-2026-28753 OCSP result bypass...

8.8CVSS7.5AI score0.21621EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/07 12:0 a.m.10 views

RHEL 9 : nginx (RHSA-2026:14836)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:14836 advisory. nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage...

8.8CVSS6.1AI score0.21621EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2026/04/29 12:0 a.m.18 views

TencentOS Server 3: nginx:1.24 (TSSA-2026:0262)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2026:0262 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

8.8CVSS6.7AI score0.21621EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/04/19 12:0 a.m.7 views

MiracleLinux 8 : nginx:1.24 (AXSA:2026-466:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-466:01 advisory. nginx: NGINX: Denial of Service or Code Execution via specially crafted MP4 files CVE-2026-32647 NGINX: NGINX: Denial of Service or file modification...

8.8CVSS7.9AI score0.21621EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/04/14 12:0 a.m.35 views

Amazon Linux 2 : nginx, --advisory ALAS2NGINX1-2026-011 (ALASNGINX1-2026-011)

The version of nginx installed on the remote host is prior to 1.28.3-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2NGINX1-2026-011 advisory. When the ngxmailauthhttpmodule module is enabled on NGINX Plus or NGINX Open Source, undisclosed requests can cause...

8.8CVSS7.9AI score0.21621EPSS
Exploits0References14
Rockylinux
Rockylinux
added 2026/04/09 6:2 a.m.7 views

nginx:1.24 security update

An update is available for module.nginx, nginx. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list nginx is a web and proxy server supporting HTTP and other...

8.8CVSS7.6AI score0.21621EPSS
Exploits0
Oracle linux
Oracle linux
added 2026/04/08 12:0 a.m.11 views

nginx security update

1.20.1-24.0.1.el97.2 - Reference oracle-indexhtml within Requires Orabug: 33802044 - Remove Red Hat references Orabug: 29498217 - Update upstream references Orabug: 36579090 2:1.20.1-24.2 - Resolves: RHEL-159557 - CVE-2026-27654 nginx: NGINX: Denial of Service or file modification via buffer...

8.8CVSS7.6AI score0.21621EPSS
Exploits0
Oracle linux
Oracle linux
added 2026/04/08 12:0 a.m.51 views

nginx:1.24 security update

1.24.0-3.0.1 - Remove Red Hat references Orabug: 29498217 1:1.24.0-3 - Resolves: RHEL-157877 CVE-2026-32647 nginx:1.24/nginx: NGINX: Denial of Service or Code Execution via specially crafted MP4 files - Resolves: RHEL-159436 CVE-2026-27651 nginx:1.24/nginx: NGINX: Denial of Service via undisclose...

8.8CVSS7.6AI score0.99999EPSS
Exploits29
RedHat Linux
RedHat Linux
added 2026/04/07 6:43 p.m.19 views

Important: Red Hat Security Advisory: nginx security update

An update for nginx is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

8.8CVSS7.6AI score0.21621EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/04/07 12:0 a.m.5 views

RockyLinux 9 : nginx:1.24 (RLSA-2026:6923)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:6923 advisory. nginx: NGINX: Denial of Service or Code Execution via specially crafted MP4 files CVE-2026-32647 NGINX: NGINX: Denial of Service or file modification via...

8.8CVSS7.7AI score0.21621EPSS
Exploits0References9
CBLMariner
CBLMariner
added 2026/03/30 3:47 p.m.2 views

CVE-2026-27651 affecting package nginx for versions less than 1.22.1-16

CVE-2026-27651 affecting package nginx for versions less than 1.22.1-16. A patched version of the package is available...

8.7CVSS5.8AI score0.00921EPSS
Exploits0
OSV
OSV
added 2026/03/24 3:16 p.m.4 views

DEBIAN-CVE-2026-27651

When the ngxmailauthhttpmodule module is enabled on NGINX Plus or NGINX Open Source, undisclosed requests can cause worker processes to terminate. This issue may occur when 1 CRAM-MD5 or APOP authentication is enabled, and 2 the authentication server permits retry by returning the Auth-Wait...

8.7CVSS5.4AI score0.00921EPSS
Exploits0References1
OSV
OSV
added 2026/03/24 3:16 p.m.4 views

UBUNTU-CVE-2026-27651

When the ngxmailauthhttpmodule module is enabled on NGINX Plus or NGINX Open Source, undisclosed requests can cause worker processes to terminate. This issue may occur when 1 CRAM-MD5 or APOP authentication is enabled, and 2 the authentication server permits retry by returning the Auth-Wait...

8.7CVSS5.8AI score0.00921EPSS
Exploits0References5
Nginx
Nginx
added 2026/03/24 2:13 p.m.335 views

NULL pointer dereference while using CRAM-MD5 or APOP

NULL pointer dereference while using CRAM-MD5 or APOP Severity: low CVE-2026-27651 Not vulnerable: 1.29.7+, 1.28.3+ Vulnerable: 0.5.15-1.29.6...

8.7CVSS5.8AI score0.00921EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder