Nginx Archives - NSFOCUS

Nginx Remote Code Execution Vulnerability (CVE-2026-42945) Notice

Por NSFOCUSPostou 15 de maio de 2026

Overview Recently, NSFOCUS CERT detected that Nginx and F5 issued security bulletins to fix the Nginx remote code execution vulnerability (CVE-2026-42945); because the ngx_http_rewrite_module module contains question marks in processing (? ) has a defect in the calculation logic when replacing strings with rewrite. Under certain configuration conditions, an unauthenticated...

Update New Nginx Threat Backdoor Alert

Por NSFOCUSPostou 8 de setembro de 2020

Overview This is an update advisory. For details, please see "Verification Method"-"Local Verification". On July 16, 2020, Beijing time, a competitor published an article stating that it captured a new Nginx backdoor recently which could bypass antivirus software. By the time this advisory is released, the backdoor had not been...