CVE-2026-42945 | F5 NGINX Plus/NGINX Open Source HTTP ngx_http_rewrite_module heap-based overflow (K000161019)

Inserito da Angelo Barbosa | Mag 13, 2026 | CVE

A vulnerability has been found in F5 NGINX Plus and NGINX Open Source and classified as critical. This affects the function ngx_http_rewrite_module of the component HTTP Handler. The manipulation leads to heap-based buffer overflow.

This vulnerability is traded as CVE-2026-42945. It is possible to initiate the attack remotely. There is no exploit available.

The affected component should be upgraded.

CVE-2026-42945 | F5 NGINX Plus/NGINX Open Source HTTP ngx_http_rewrite_module heap-based overflow (K000161019)

Post correlati

CVE-2024-28830 | Checkmk up to 2.0.0p39/2.1.0p44/2.2.0p27/2.3.0p6 log file

CVE-2023-6853 | kalcaddle KodExplorer up to 4.51.03 app.php index path server-side request forgery

CVE-2025-30188 | Open-Xchange OX App Suite up to 2.1.7 API resource consumption (oxas-adv-2025-0002)

CVE-2022-47037 | Siklu TG Terragraph up to 2.1.0 GetCredentials random values