https://nginx.org|nginx vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the https://nginx.org|nginx package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
H Acceptance of Extraneous Untrusted Data With Trusted Data	[1.3.0,1.28.2)[1.29.0,1.29.5)
M Out-of-bounds Read	[0.7.22,1.29.1)
M Improper Authentication	[1.11.4,1.26.3)[1.27.0,1.27.4)
M Buffer Over-read	[1.5.13,1.26.2)[1.27.0,1.27.1)
M Use After Free	[1.25.0,1.26.1)
M NULL Pointer Dereference	[1.25.0,1.26.1)
M Out-of-bounds Write	[1.25.0,1.26.1)
M Stack-based Buffer Overflow	[1.25.0,1.26.1)
H NULL Pointer Dereference	[,1.25.4)
M Use After Free	[1.25.0,1.25.4)
H Denial of Service (DoS)	[,1.25.3)
H Out-of-bounds Write	[,1.22.1)[1.23.0,1.23.2)
H Out-of-bounds Write	[,1.22.1)[1.23.0,1.23.2)
M Access Restriction Bypass	[,1.21.0)
H NULL Pointer Dereference	[,1.8.1)[1.9.0,1.9.10)
M Out-of-bounds Write	[,1.0.10)
M HTTP Request Smuggling	[,1.17.7)
M Improper Input Validation	[,1.4.1)
H NULL Pointer Dereference	[,1.10.1)[1.11.0,1.11.1)
M Information Exposure	[,0.7.66)[0.8.0,0.8.40)
M Arbitrary Command Injection	[,1.6.1)[1.7.0,1.7.4)
H Out-of-bounds Write	[,1.5.12)
C Off-by-one Error	[,1.20.1)
H Integer Overflow or Wraparound	[,1.12.1)[1.13.0,1.13.3)
M Buffer Overflow	[1.0.7,1.0.15)[1.1.3,1.1.19)
H Out-of-bounds Write	[1.3.9,1.4.1)
H Denial of Service (DoS)	(1.15.0,1.15.6)
M Denial of Service (DoS)	[,1.8.1)[1.9.0,1.9.10)
C Integer Overflow or Wraparound	[,1.13.6)
M Information Exposure	[0,)
M Access Restriction Bypass	[,1.2.1)[1.3.0,1.3.1)
C Use After Free	[,1.8.1)[1.9.0,1.9.10)
M Use After Free	[,1.0.14)[1.1.0,1.1.17)
H Out-of-Bounds	[,1.5.11)
H Access Restriction Bypass	[1.3.9,1.4.1)
H Denial of Service (DoS)	[1.9.5,1.16.1)[1.17.0,1.17.3)
M Out-of-Bounds	[,0.5.38)[0.6.0,0.6.39)[0.7.0,0.7.62)[0.8.0,0.8.14)
M Directory Traversal	[0.7.52,0.7.67)[0.8.40,0.8.41)
H Denial of Service (DoS)	[1.9.5,1.16.1)[1.17.0,1.17.3)
H Denial of Service (DoS)	[1.15.0,1.15.6)
H Out-of-bounds Write	[,0.6.39)[0.7.0,0.7.62)[0.8.0,0.8.15)
M Insufficient Session Expiration	[0.5.6,1.6.2)[1.7.4,1.7.5)
M Directory Traversal	[,0.7.63)[0.8.0,0.8.17)
M Denial of Service (DoS)	[1.1.3,1.15.6)
M Denial of Service (DoS)	[1.9.5,1.16.1)[1.17.0,1.17.3)
M Denial of Service (DoS)	[1.1.4,1.2.9)[1.3.9,1.4.1)
H Cross-site Scripting (XSS)	[,1.5.7)

Vulnerability

Vulnerable Version

Acceptance of Extraneous Untrusted Data With Trusted Data

[1.3.0,1.28.2)[1.29.0,1.29.5)