Lucene search
K

11 matches found

RedHat Linux
RedHat Linux
added 6 hours ago8 views

Important: Red Hat Security Advisory: nginx:1.24 security, bug fix, and enhancement update

An update for the nginx:1.24 module is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.2CVSS7.9AI score0.02838EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added yesterday4 views

Important: Red Hat Security Advisory: nginx security, bug fix, and enhancement update

An update for nginx is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

9.2CVSS7.9AI score0.02838EPSS
Exploits1References2
OSV
OSV
added 2 days ago3 views

OESA-2026-2801 nginx security update

NGINX is a free, open-source, high-performance HTTP server and reverse proxy, as well as an IMAP/POP3 proxy server. Security Fixes: NGINX Plus and NGINX Open Source have a vulnerability in the ngxhttpproxyv2module and ngxhttpgrpcmodule modules. This vulnerability exists when the proxyhttpversion ...

9.2CVSS6.3AI score0.02838EPSS
Exploits1References3
OSV
OSV
added 2 days ago4 views

OESA-2026-2798 nginx security update

NGINX is a free, open-source, high-performance HTTP server and reverse proxy, as well as an IMAP/POP3 proxy server. Security Fixes: NGINX Plus and NGINX Open Source have a vulnerability in the ngxhttpproxyv2module and ngxhttpgrpcmodule modules. This vulnerability exists when the proxyhttpversion ...

9.2CVSS6.3AI score0.02838EPSS
Exploits1References3
Debian
Debian
added 5 days ago7 views

[SECURITY] [DLA 4667-1] nginx security update

Debian LTS Advisory DLA-4667-1 [email protected] https://www.debian.org/lts/security/ Carlos Henrique Lima Melara July 03, 2026 https://wiki.debian.org/LTS Package : nginx Version : 1.22.1-9+deb12u9 CVE ID : CVE-2026-42055 CVE-2026-48142 Debian Bug : 1140359 1140361 Multiple...

9.2CVSS6.5AI score0.02838EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/06/26 12:0 a.m.12 views

Fedora 44 : nginx / nginx-mod-brotli / nginx-mod-fancyindex / etc (2026-b8e751787c)

The remote Fedora 44 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2026-b8e751787c advisory. nginx-mod-brotli: - Rebuild for 1.30.3 nginx-mod-fancyindex: - Rebuild for 1.30.3 nginx-mod-vts: - Rebuild for 1.30.3 nginx-mod-modsecurity: - Rebui...

9.2CVSS6.1AI score0.03225EPSS
Exploits4References4
Wolfi
Wolfi
added 2026/06/24 2:16 p.m.12 views

CVE-2026-42055 vulnerabilities

Vulnerabilities for packages: ingress-nginx-controller...

9.2CVSS6.1AI score0.02838EPSS
Exploits1
OSV
OSV
added 2026/06/19 12:0 a.m.4 views

UBUNTU-CVE-2026-42055

NGINX Plus and NGINX Open Source have a vulnerability in the ngxhttpproxyv2module and ngxhttpgrpcmodule modules. This vulnerability exists when the proxyhttpversion to 2 or grpcpass directives are used to proxy HTTP/2 traffic, the ignoreinvalidheaders directive is set to off, and the...

9.2CVSS6.5AI score0.02838EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/06/19 12:0 a.m.7 views

nginx 1.13.10 < 1.30.3 / 1.31.x < 1.31.2 Buffer Overflow

The installed version of nginx is 1.13.10 prior to 1.30.3, or 1.31.x prior to 1.31.2. It is, therefore, affected by the following issue : - NGINX Plus and NGINX Open Source have a vulnerability in the ngxhttpproxyv2module and ngxhttpgrpcmodule modules. This vulnerability exists when the...

9.2CVSS6.6AI score0.02838EPSS
Exploits1References3
The Hacker News
The Hacker News
added 2026/06/18 5:32 p.m.14 views

F5 Patches Two Critical NGINX Open Source Flaws Enabling Remote Code Execution

F5 has released security updates to address two critical security flaws in NGINX Open Source that could be exploited to achieve code execution on affected systems. The vulnerabilities are listed below - CVE-2026-42530 CVSS v4 score: 9.2 - A use-after-free vulnerability in the ngxhttpv3module that...

9.2CVSS6.8AI score0.03225EPSS
Exploits4
CVE
CVE
added 2026/06/17 2:4 p.m.288 views

CVE-2026-42055

CVE-2026-42055 affects NGINX Plus and NGINX Open Source via the ngx_http_proxy_v2_module and ngx_http_grpc_module. A remote, unauthenticated attacker can exploit scenarios where proxy_http_version 2 or grpc_pass is used, ignore_invalid_headers is off, and large_client_header_buffers is set to mul...

9.2CVSS6AI score0.02838EPSS
Exploits1References8Affected Software9
Rows per page
Query Builder