6215 matches found
GHSA-7CHH-RV6Q-8PP3 vulnerabilities
Vulnerabilities for packages: nginx-stable...
GHSA-2QMJ-Q2XC-85V8 vulnerabilities
Vulnerabilities for packages: nginx-stable...
CVE-2025-53859 vulnerabilities
Vulnerabilities for packages: nginx-stable...
CVE-2026-1642 vulnerabilities
Vulnerabilities for packages: nginx-stable...
GHSA-7CHH-RV6Q-8PP3 vulnerabilities
Vulnerabilities for packages: nginx-stable...
CVE-2026-1642 vulnerabilities
Vulnerabilities for packages: nginx-stable...
GHSA-2QMJ-Q2XC-85V8 vulnerabilities
Vulnerabilities for packages: nginx-stable...
CVE-2025-53859 vulnerabilities
Vulnerabilities for packages: nginx-stable...
RHSA-2026:14836 Red Hat Security Advisory: nginx security update
Bulletin has no description...
Security update for nginx
This update for nginx fixes the following issues: CVE-2026-1642: plain text data injection into the response from an upstream proxied server via MITM attack bsc1257675. CVE-2026-27654: buffer overflow in the NGINX worker process via the ngxhttpdavmodule module bsc1260416. CVE-2026-27784: NGINX...
SUSE-SU-2026:1761-1 Security update for nginx
This update for nginx fixes the following issues: - CVE-2026-1642: plain text data injection into the response from an upstream proxied server via MITM attack bsc1257675. - CVE-2026-27654: buffer overflow in the NGINX worker process via the ngxhttpdavmodule module bsc1260416. - CVE-2026-27784:...
ROS-20260508-73-0018
A vulnerability in the ngxmailsmtpmodule module of the NGINX Plus and NGINX Open Source HTTP server is related to the failure to take measures to neutralize CRLF sequences. Exploitation of the vulnerability may allow a remote intruder to affect the integrity of protected information...
ROS-20260508-73-0017
A vulnerability in the ngxhttpmp4module module of NGINX Open Source web servers is related to integer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260508-73-0015
A vulnerability in the ngxhttpmp4module module of the NGINX Plus and NGINX Open Source HTTP server is related to reading beyond buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker to cause a denial of service or execute arbitrary code...
Exploit for Missing Authentication for Critical Function in Nginxui Nginx_Ui
HTB-Snapped-Writeup HTB Snapped — Hard Linux machine writeup...
Exploit for Missing Authentication for Critical Function in Nginxui Nginx_Ui
HTB-Snapped--Writeup HTB Snapped — Hard Linux machine writeup...
NGINX: NGINX: Denial of Service or file modification via buffer overflow in ngx_http_dav_module
A flaw was found in NGINX. A remote attacker can exploit a buffer overflow vulnerability within the ngxhttpdavmodule module. This occurs when the NGINX configuration uses DAV module MOVE or COPY methods in conjunction with prefix location and alias directives. Successful exploitation may lead to...
nginx: NGINX: Denial of Service or Code Execution via specially crafted MP4 files
A flaw was found in NGINX's ngxhttpmp4module. This Out-of-Bounds Read/Write vulnerability occurs due to improper handling of specially crafted MP4 files. A local authenticated attacker, by supplying a malicious MP4 file, can trigger a buffer over-read or overwrite in worker memory. This can lead ...
Important: Red Hat Security Advisory: nginx security update
An update for nginx is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
PAN-OS RCE Exploit Under Active Use Enabling Root Access and Espionage
Palo Alto Networks has disclosed that threat actors may have attempted to unsuccessfully exploit a recently disclosed critical security flaw as early as April 9, 2026. The vulnerability in question is CVE-2026-0300 CVSS score: 9.3/8.7, a buffer overflow vulnerability in the User-ID Authentication...