CVE-2026-42945

🗓️ 14 May 2026 00:00:00Reported by ubuntu.comType

ubuntucve

ubuntucve🔗 ubuntu.com👁 9 Views

CVE-2026-42945 affects NGINX ngx_http_rewrite_module on Unix.

Reporter	Title	Published	Views	Family All 272
GithubExploit	nginx-rift-private-lab	15 May 202600:12	–	githubexploit
GithubExploit	Exploit for CVE-2026-42945	14 May 202611:03	–	githubexploit
GithubExploit	Exploit for CVE-2026-42945	14 May 202604:40	–	githubexploit
GithubExploit	Exploit for CVE-2026-42945	15 May 202602:12	–	githubexploit
GithubExploit	Exploit for CVE-2026-42945	25 May 202601:35	–	githubexploit
GithubExploit	Exploit for CVE-2026-42945	28 May 202606:40	–	githubexploit
GithubExploit	Exploit for CVE-2026-42945	15 May 202609:57	–	githubexploit
GithubExploit	Exploit for CVE-2026-42945	25 May 202601:02	–	githubexploit
GithubExploit	Exploit for CVE-2026-42945	25 May 202612:06	–	githubexploit
GithubExploit	Exploit for CVE-2026-42945	17 May 202619:22	–	githubexploit

OS	OS Version	Architecture	Package	Package Version	Filename
Ubuntu	14.04	any	nginx	0	nginx_0_any.deb
Ubuntu	16.04	any	nginx	0	nginx_0_any.deb
Ubuntu	18.04	any	nginx	0	nginx_0_any.deb
Ubuntu	20.04	any	nginx	0	nginx_0_any.deb
Ubuntu	24.04	any	nginx	1.24.0-2ubuntu7.8	nginx_1.24.0-2ubuntu7.8_any.deb
Ubuntu	25.10	any	nginx	1.28.0-6ubuntu1.3	nginx_1.28.0-6ubuntu1.3_any.deb
Ubuntu	26.04	any	nginx	1.28.3-2ubuntu1.1	nginx_1.28.3-2ubuntu1.1_any.deb
Ubuntu	22.04	any	nginx	1.18.0-6ubuntu14.11	nginx_1.18.0-6ubuntu14.11_any.deb

Source	Link
cve	www.cve.org/CVERecord
openwall	www.openwall.com/lists/oss-security/2026/05/13/7
depthfirst	www.depthfirst.com/research/nginx-rift-achieving-nginx-rce-via-an-18-year-old-vulnerability
my	www.my.f5.com/manage/s/article/K000161019
nginx	www.nginx.org/en/security_advisories.html
ubuntu	www.ubuntu.com/security/notices/USN-8271-1

02 Jun 2026 08:45Current

6.4Medium risk

Vulners AI Score6.4

CVSS 3.18.1

CVSS 49.2

EPSS0.23018

SSVC

cve 2026-42945 nginx rewrite module unix