According to its Server response header, the installed version of nginx is 1.x prior to 1.14.1 or 1.15.x prior to 1.15.6. It is, therefore, affected by the following issues :
An unspecified error exists related to the module ‘ngx_http_v2_module’ that allows excessive memory usage. (CVE-2018-16843)
An unspecified error exists related to the module ‘ngx_http_v2_module’ that allows excessive CPU usage. (CVE-2018-16844)
An unspecified error exists related to the module ‘ngx_http_mp4_module’ that allows worker process crashes or memory disclosure. (CVE-2018-16845)
Note that the scanner has not tested for these issues but has instead relied only on the application’s self-reported version number.
No source data