Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Remote Code Execution

🗓️ 28 May 2021 13:25:37Reported by Veracode Vulnerability DatabaseType 
veracode
 veracode🔗 sca.analysiscenter.veracode.com👁 1844 Views

nginx remote code execution vulnerability due to off-by-one error in ngx_resolver_copy(

Related
Detection
Refs
ReporterTitlePublishedViews
Family
GithubExploit		Exploit for Off-by-one Error in F5 Nginx
30 Jun 202204:39
githubexploit
GithubExploit		Exploit for Off-by-one Error in F5 Nginx
20 Jul 202305:39
githubexploit
GithubExploit		Exploit for Off-by-one Error in F5 Nginx
8 Dec 202409:47
githubexploit
GithubExploit		Exploit for Off-by-one Error in F5 Nginx
4 Sep 202509:49
githubexploit
GithubExploit		Exploit for Off-by-one Error in F5 Nginx
21 Oct 202304:24
githubexploit
FreeBSD		NGINX -- 1-byte memory overwrite in resolver
25 May 202100:00
freebsd
0day.today		nginx 1.20.0 DNS Resolver Off-By-One Heap Write Exploit
27 May 202100:00
zdt
0day.today		Nginx 1.20.0 - Denial of Service Exploit
11 Jul 202200:00
zdt
IBM Security Bulletins		Security Bulletin: IBM API Connect V5 is impacted by a vulnerability in nginx. (CVE-2021-23017)
25 Aug 202113:37
ibm
IBM Security Bulletins		Security Bulletin: Netcool Operations Insight v1.6.8 addresses multiple security vulnerabilities.
11 Apr 202311:47
ibm
Rows per page
Vulners
Node
f5nginxMatch1.18.0-r14os
AND
f5nginxMatch1.18.0-r15os
AND
f5nginxMatch1.16.1-r8os
AND
f5nginxMatch1.18.0-r0os
AND
f5nginxMatch1.20.0-r0os
AND
alpinelinuxalpine_linuxMatchedge
OR
f5nginxMatch1.18.0-r13os
AND
alpinelinuxalpine_linuxMatch3.13
OR
f5nginxMatch1.16.1-r2os
AND
alpinelinuxalpine_linuxMatch3.10
OR
f5nginxMatch1.18.0-r0os
AND
f5nginxMatch1.18.0-r1os
AND
alpinelinuxalpine_linuxMatch3.12
OR
f5nginxMatch1.16.1-r6os
AND
alpinelinuxalpine_linuxMatch3.11
OR
f5nginxMatch1.14.2-2+deb10u3debian
AND
debiandebian_linuxMatch10
OR
f5nginxMatch1.10.3-1+deb9u4debian
AND
debiandebian_linuxMatch9
OR
f5nginxMatch1.18.0-6debian
AND
debiandebian_linuxMatch999
OR
googlebionicMatch1.14.0-0ubuntu1debian
AND
googlebionicMatch1.14.0-0ubuntu1.7debian
AND
debiandebian_linux
OR
hirsutehirsuteMatch1.18.0-6ubuntu2debian
AND
hirsutehirsuteMatch1.18.0-6ubuntu4debian
AND
debiandebian_linux
OR
focalfocalMatch1.17.10-0ubuntu1debian
AND
focalfocalMatch1.18.0-0ubuntu1debian
AND
debiandebian_linux
OR
develdevelMatch1.18.0-6ubuntu2debian
AND
develdevelMatch1.18.0-6ubuntu4debian
AND
debiandebian_linux
OR
apachegroovyMatch1.18.0-6ubuntu2debian
AND
debiandebian_linux
OR
f5nginxMatch1.18.0-6debian
AND
debiandebian_linuxMatch11
OR
rh-nginx116-nginxrh-nginx116-nginxMatch1.16.1_4.el7.1
OR
rh-nginx116-nginxrh-nginx116-nginxMatch1.16.1_4.el7
OR
python-pulpcorepython-pulpcoreMatch3.7.5_1.el7pc
OR
python-pulpcorepython-pulpcoreMatch3.7.3_2.el7pc
OR
python-pulpcorepython-pulpcoreMatch3.7.3_1.el7pc
OR
automation-hubautomation-hubMatch4.2.0_1.el7pc
OR
automation-hubautomation-hubMatch4.2.1_2.el7pc
OR
automation-hubautomation-hubMatch4.2.2_1.el7pc
OR
automation-hubautomation-hubMatch4.2.3_1.el7pc
OR
python-galaxy-ngpython-galaxy-ngMatch4.2.2_1.el7pc
OR
python-galaxy-ngpython-galaxy-ngMatch4.2.1_1.el7pc
OR
python-galaxy-ngpython-galaxy-ngMatch4.2.0_1.el7pc
OR
python-galaxy-ngpython-galaxy-ngMatch4.2.3_1.el7pc
SourceLink
listswww.lists.apache.org/thread.html/r6fc5c57b38e93e36213e9a18c8a4e5dbd5ced1c7e57f08a1735975ba%40%3Cnotifications.apisix.apache.org%3E
listswww.lists.apache.org/thread.html/r6fc5c57b38e93e36213e9a18c8a4e5dbd5ced1c7e57f08a1735975ba@%3Cnotifications.apisix.apache.org%3E
listswww.lists.apache.org/thread.html/rf232eecd47fdc44520192810560303073cefd684b321f85e311bad31@%3Cnotifications.apisix.apache.org%3E
listswww.lists.apache.org/thread.html/rf232eecd47fdc44520192810560303073cefd684b321f85e311bad31%40%3Cnotifications.apisix.apache.org%3E
listswww.lists.apache.org/thread.html/r37e6b2165f7c910d8e15fd54f4697857619ad2625f56583802004009@%3Cnotifications.apisix.apache.org%3E
listswww.lists.apache.org/thread.html/r37e6b2165f7c910d8e15fd54f4697857619ad2625f56583802004009%40%3Cnotifications.apisix.apache.org%3E
listswww.lists.apache.org/thread.html/r4d4966221ca399ce948ef34884652265729d7d9ef8179c78d7f17e7f%40%3Cnotifications.apisix.apache.org%3E
listswww.lists.apache.org/thread.html/r4d4966221ca399ce948ef34884652265729d7d9ef8179c78d7f17e7f@%3Cnotifications.apisix.apache.org%3E
listswww.lists.apache.org/thread.html/rf318aeeb4d7a3a312734780b47de83cefb7e6995da0b2cae5c28675c@%3Cnotifications.apisix.apache.org%3E
listswww.lists.apache.org/thread.html/rf318aeeb4d7a3a312734780b47de83cefb7e6995da0b2cae5c28675c%40%3Cnotifications.apisix.apache.org%3E
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
07 Nov 2023 22:49Current
4.1Medium risk
Vulners AI Score4.1
CVSS 26.8
CVSS 3.17.7
EPSS0.73544
nginxremote code executionvulnerabilityoff-by-one errordns responses
1844