BackBox.org News
  • BackBox.org
  • Linux
  • Community
  • News
  • Services
  • Sitemap
  • Contact
  • Click to open the search input field Click to open the search input field Search
  • Menu Menu
18-Year-Old NGINX Rewrite Module Flaw Enables Unauthenticated RCE

18-Year-Old NGINX Rewrite Module Flaw Enables Unauthenticated RCE

May 14, 2026/in General News

Cybersecurity researchers have disclosed multiple security vulnerabilities impacting NGINX Plus and NGINX Open, including a critical flaw that remained undetected for 18 years.
The vulnerability, discovered by depthfirst, is a heap buffer overflow issue impacting ngx_http_rewrite_module (CVE-2026-42945, CVSS v4 score: 9.2) that could allow an attacker to achieve remote code execution or cause a

The Hacker News – ​Read More

Share this entry
  • Share on Facebook
  • Share on X
  • Share on WhatsApp
  • Share on LinkedIn
  • Share on Vk
  • Share on Reddit
  • Share by Mail
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png 0 0 admin https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png admin2026-05-14 08:06:402026-05-14 08:06:4018-Year-Old NGINX Rewrite Module Flaw Enables Unauthenticated RCE
Search Search
Copyright © BackBox.org
  • Link to X
  • Link to Facebook
  • Link to LinkedIn
  • Link to Youtube
  • Link to Telegram
Link to: New Fragnesia Linux Kernel LPE Grants Root Access via Page Cache Corruption Link to: New Fragnesia Linux Kernel LPE Grants Root Access via Page Cache Corruption New Fragnesia Linux Kernel LPE Grants Root Access via Page Cache CorruptionNew Fragnesia Linux Kernel LPE Grants Root Access via Page Cache Corruption Link to: 10 Google Maps settings I immediately change on every new phone – and why Link to: 10 Google Maps settings I immediately change on every new phone – and why 10 Google Maps settings I immediately change on every new phone – and...
Scroll to top Scroll to top Scroll to top