Lucene search
K

7 matches found

RedHat Linux
RedHat Linux
added 2026/06/19 9:14 a.m.4 views

Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: nginx: nginx-1.30.3-2.hum1 aarch64, x8664 nginx-all-modules-1.30.3-2.hum1 noarch nginx-core-1.30.3-2.hum1 aarch64, x8664 nginx-filesystem-1.30.3-2.hum1 noarch nginx-mod-devel-1.30.3-2.hum1 aarch6...

9.2CVSS6.1AI score0.03459EPSS
Exploits1References4
OSV
OSV
added 2026/04/27 12:28 p.m.8 views

USN-8210-1 nginx vulnerabilities

It was discovered that the nginx ngxmailauthhttpmodule module incorrectly handled certain requests. An attacker could possibly use this issue to cause nginx to crash, resulting in a denial of service. CVE-2026-27651 It was discovered that the nginx ngxhttpdavmodule module incorrectly handled...

8.8CVSS9AI score0.21621EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/04/23 12:0 a.m.5 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: nginx (UTSA-2026-014274)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-014274 advisory. NGINX Plus and NGINX Open Source have a vulnerability in the ngxmailsmtpmodule module due to the improper handling of CRLF sequences in DNS responses. This allows an...

6.3CVSS5.6AI score0.00264EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/24 2:13 p.m.30 views

CVE-2026-27651 NGINX ngx_mail_auth_http_module vulnerability

When the ngxmailauthhttpmodule module is enabled on NGINX Plus or NGINX Open Source, undisclosed requests can cause worker processes to terminate. This issue may occur when 1 CRAM-MD5 or APOP authentication is enabled, and 2 the authentication server permits retry by returning the Auth-Wait...

8.7CVSS0.00921EPSS
Exploits0References1
F5 Networks
F5 Networks
added 2026/03/24 1:15 p.m.11 views

K000160367: NGINX ngx_mail_smtp_module vulnerability CVE-2026-28753

Security Advisory Description NGINX Plus and NGINX Open Source have a vulnerability in the ngxmailsmtpmodule module due to the improper handling of CRLF sequences in DNS responses. This allows an attacker-controlled DNS server to inject arbitrary headers into SMTP upstream requests, leading to...

6.3CVSS5.8AI score0.00264EPSS
Exploits0Affected Software2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-24579

Malicious code in bioql PyPI...

6.3CVSS6.3AI score0.00371EPSS
Exploits0References1
OSV
OSV
added 2025/08/18 8:7 a.m.55 views

BIT-NGINX-2025-53859 NGINX ngx_mail_smtp_module vulnerability

NGINX Open Source and NGINX Plus have a vulnerability in the ngxmailsmtpmodule that might allow an unauthenticated attacker to over-read NGINX SMTP authentication process memory; as a result, the server side may leak arbitrary bytes sent in a request to the authentication server. This issue happe...

6.3CVSS7.5AI score0.00371EPSS
Exploits0References3
Rows per page
Query Builder