Lucene search
+L

Authentication Bypass

🗓️ 09 Feb 2025 18:00:50Reported by Veracode Vulnerability DatabaseType 
veracode
 veracode
🔗 sca.analysiscenter.veracode.com👁 6 Views

NGINX vulnerability allows authentication bypass using shared TLS session states via session resumption.

Related
Detection
Refs
Vulners
Node
OR
AND
nginxnginxMatch1.18.0-6debian
AND
nginxnginxMatch1.22.1-r0os
nginxnginxMatch1.16.1-r8os
nginxnginxMatch1.20.1-r4os
nginxnginxMatch1.20.2-r1os
nginxnginxMatch1.26.1-r2os
nginxnginxMatch1.24.0-r10os
nginxnginxMatch1.24.0-r17os
nginxnginxMatch1.22.0-r0os
nginxnginxMatch1.24.0-r6os
nginxnginxMatch1.20.1-r1os
nginxnginxMatch1.26.0-r1os
nginxnginxMatch1.22.0-r8os
nginxnginxMatch1.24.0-r2os
nginxnginxMatch1.24.0-r0os
nginxnginxMatch1.24.0-r13os
nginxnginxMatch1.22.0-r1os
nginxnginxMatch1.20.1-r3os
nginxnginxMatch1.26.2-r2os
nginxnginxMatch1.24.0-r18os
nginxnginxMatch1.20.2-r0os
nginxnginxMatch1.22.0-r7os
nginxnginxMatch1.26.2-r3os
nginxnginxMatch1.26.2-r0os
nginxnginxMatch1.20.1-r6os
nginxnginxMatch1.26.0-r2os
nginxnginxMatch1.24.0-r9os
nginxnginxMatch1.20.1-r12os
nginxnginxMatch1.24.0-r14os
nginxnginxMatch1.26.0-r0os
nginxnginxMatch1.24.0-r1os
nginxnginxMatch1.22.0-r5os
nginxnginxMatch1.22.0-r3os
nginxnginxMatch1.20.1-r5os
nginxnginxMatch1.20.1-r7os
nginxnginxMatch1.18.0-r0os
nginxnginxMatch1.24.0-r12os
nginxnginxMatch1.20.1-r9os
nginxnginxMatch1.20.1-r13os
nginxnginxMatch1.26.2-r4os
nginxnginxMatch1.18.0-r15os
nginxnginxMatch1.20.2-r2os
nginxnginxMatch1.18.0-r14os
nginxnginxMatch1.20.0-r0os
nginxnginxMatch1.26.1-r3os
nginxnginxMatch1.20.1-r0os
nginxnginxMatch1.24.0-r16os
nginxnginxMatch1.26.1-r0os
nginxnginxMatch1.20.1-r2os
nginxnginxMatch1.22.0-r6os
nginxnginxMatch1.24.0-r11os
nginxnginxMatch1.22.0-r2os
AND
nginxnginxMatch1.26.0-r0os
nginxnginxMatch1.26.2-r0os
nginxnginxMatch1.26.0-r2os
nginxnginxMatch1.26.0-r1os
nginxnginxMatch1.26.1-r0os
AND
nginxnginxMatch1.26.2-r0os
nginxnginxMatch1.26.2-r3os
nginxnginxMatch1.26.2-r2os
nginxnginxMatch1.26.2-r4os
nginxnginxMatch1.26.2-r1os
AND
nginxnginxMatch1.18.0-6debian

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

27 Jan 2026 15:17Current
6.9Medium risk
Vulners AI Score6.9
CVSS 3.14.3
CVSS 45.3
EPSS0.02646
SSVC
6