nginx · threatengine.sh

CVE-2025-23419

>= 1.11.4 and < 1.26.3

When multiple server blocks are configured to share the same IP address and port, an attacker can use session resumption to bypass

4.3MEDIUM

CVE-2023-44487

>= 1.9.5 and <= 1.25.2

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams q

7.5HIGH

CVE-2022-41742

>= 1.1.3 and <= 1.22.0

NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1 and R1 P1, and NGINX Plu

7.1HIGH

CVE-2022-41741

>= 1.1.3 and <= 1.22.0

NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1 and R1 P1, and NGINX Plu

7.0HIGH

CVE-2022-35173

all versions

An issue was discovered in Nginx NJS v0.7.5. The JUMP offset for a break instruction was not set to a correct offset during code g

7.5HIGH

CVE-2022-30503

all versions

Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_set_number at src/njs_value.h.

5.5MEDIUM

CVE-2022-29780

all versions

Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_array_prototype_sort at src/njs_array.c.

5.5MEDIUM

CVE-2022-29779

all versions

Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_value_own_enumerate at src/njs_value.c.

5.5MEDIUM

CVE-2021-3618

< 1.21.0

ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but usin

7.4HIGH

CVE-2021-46461

<= 0.7.0

njs through 0.7.0, used in NGINX, was discovered to contain an out-of-bounds array access via njs_vmcode_typeof in /src/njs_vmcode

9.8CRITICAL

CVE-2017-20005

< 1.13.6

NGINX before 1.13.6 has a buffer overflow for years that exceed four digits, as demonstrated by a file with a modification date in

9.8CRITICAL

CVE-2021-23017

>= 0.6.18 and < 1.20.1

A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS ser

7.7HIGH

CVE-2019-20372

< 1.17.7

NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an a

5.3MEDIUM

CVE-2011-4968

all versions

nginx http proxy module does not verify peer identity of https origin server which could facilitate man-in-the-middle attack (MITM

4.8MEDIUM

CVE-2019-9516

>= 1.9.5 and < 1.16.1

Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service. The attacker sends a stre

6.5MEDIUM

CVE-2019-9513

>= 1.9.5 and < 1.16.1

Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service. The attacker creates mul

7.5HIGH

CVE-2019-9511

>= 1.9.5 and < 1.16.1

Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading

7.5HIGH

CVE-2018-16845

>= 1.0.7 and <= 1.0.15

nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infini

6.1MEDIUM

CVE-2018-16844

>= 1.9.5 and < 1.14.1

nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive CPU usage

7.5HIGH

CVE-2018-16843

> 1.9.5 and < 1.14.1

nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive memory co

7.5HIGH

CVE-2017-7529

>= 0.5.6 and <= 1.12.1

Nginx versions since 0.5.6 up to and including 1.13.2 are vulnerable to integer overflow vulnerability in nginx range filter modul

7.5HIGH

CVE-2016-1247

<= 1.10.1

The nginx package before 1.6.2-5+deb8u3 on Debian jessie, the nginx packages before 1.4.6-1ubuntu3.6 on Ubuntu 14.04 LTS, before 1

7.8HIGH

CVE-2016-4450

>= 1.3.9 and < 1.10.1

os/unix/ngx_files.c in nginx before 1.10.1 and 1.11.x before 1.11.1 allows remote attackers to cause a denial of service (NULL poi

7.5HIGH

CVE-2016-0747

>= 0.6.18 and < 1.8.1

The resolver in nginx before 1.8.1 and 1.9.x before 1.9.10 does not properly limit CNAME resolution, which allows remote attackers

5.3MEDIUM

CVE-2016-0746

>= 0.6.18 and <= 1.8.0

Use-after-free vulnerability in the resolver in nginx 0.6.18 through 1.8.0 and 1.9.x before 1.9.10 allows remote attackers to caus

9.8CRITICAL

CVE-2016-0742

>= 0.6.18 and < 1.8.1

The resolver in nginx before 1.8.1 and 1.9.x before 1.9.10 allows remote attackers to cause a denial of service (invalid pointer d

7.5HIGH

CVE-2014-3556

>= 1.5.6 and < 1.6.1

The STARTTLS implementation in mail/ngx_mail_smtp_handler.c in the SMTP proxy in nginx 1.5.x and 1.6.x before 1.6.1 and 1.7.x befo

CVE-2014-3616

>= 0.5.6 and < 1.6.2

nginx 0.5.6 through 1.7.4, when using the same shared ssl_session_cache or ssl_session_ticket_key for multiple servers, can reuse

CVE-2014-0088

all versions

The SPDY implementation in the ngx_http_spdy_module module in nginx 1.5.10 before 1.5.11, when running on a 32-bit platform, allow

CVE-2014-0133

>= 1.3.15 and < 1.4.7

Heap-based buffer overflow in the SPDY implementation in nginx 1.3.15 before 1.4.7 and 1.5.x before 1.5.12 allows remote attackers

CVE-2013-4547

>= 0.8.41 and < 1.4.4

nginx 0.8.41 through 1.4.3 and 1.5.x before 1.5.7 allows remote attackers to bypass intended restrictions via an unescaped space c

CVE-2013-0337

<= 1.3.13

The default configuration of nginx, possibly 1.3.13 and earlier, uses world-readable permissions for the (1) access.log and (2) er

CVE-2013-2070

>= 1.1.4 and <= 1.2.8

http/modules/ngx_http_proxy_module.c in nginx 1.1.4 through 1.2.8 and 1.3.0 through 1.4.0, when proxy_pass is used with untrusted

CVE-2013-2028

>= 1.3.9 and <= 1.4.0

The ngx_http_parse_chunked function in http/ngx_http_parse.c in nginx 1.3.9 through 1.4.0 allows remote attackers to cause a denia

CVE-2011-4963

>= 0.7.52 and < 1.2.1

nginx/Windows 1.3.x before 1.3.1 and 1.2.x before 1.2.1 allows remote attackers to bypass intended access restrictions and access

CVE-2012-2089

>= 1.0.7 and <= 1.0.14

Buffer overflow in ngx_http_mp4_module.c in the ngx_http_mp4_module module in nginx 1.0.7 through 1.0.14 and 1.1.3 through 1.1.18,

CVE-2012-1180

>= 0.1.0 and < 1.0.14

Use-after-free vulnerability in nginx before 1.0.14 and 1.1.x before 1.1.17 allows remote HTTP servers to obtain sensitive informa

CVE-2011-4315

>= 0.6.18 and < 1.0.10

Heap-based buffer overflow in compression-pointer processing in core/ngx_resolver.c in nginx before 1.0.10 allows remote resolvers

CVE-2010-4180

< 0.9.2

OpenSSL before 0.9.8q, and 1.0.x before 1.0.0c, when SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG is enabled, does not properly prevent

CVE-2010-2266

>= 0.7.52 and < 0.7.67

nginx 0.8.36 allows remote attackers to cause a denial of service (crash) via certain encoded directory traversal sequences that t

CVE-2010-2263

>= 0.7.52 and < 0.7.66

nginx 0.8 before 0.8.40 and 0.7 before 0.7.66, when running on Windows, allows remote attackers to obtain source code or unparsed

CVE-2009-4487

all versions

nginx 0.7.64 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to modify a

CVE-2009-3898

<= 0.7.62

Directory traversal vulnerability in src/http/modules/ngx_http_dav_module.c in nginx (aka Engine X) before 0.7.63, and 0.8.x befor

CVE-2009-3896

all versions

src/http/ngx_http_parse.c in nginx (aka Engine X) 0.1.0 through 0.4.14, 0.5.x before 0.5.38, 0.6.x before 0.6.39, 0.7.x before 0.7

CVE-2009-3555

>= 0.1.0 and <= 0.8.22

The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod

9.8CRITICAL

CVE-2009-2629

>= 0.1.0 and < 0.5.38

Buffer underflow in src/http/ngx_http_parse.c in nginx 0.1.0 through 0.5.37, 0.6.x before 0.6.39, 0.7.x before 0.7.62, and 0.8.x b

f5 nginx