Homepage

nginx vulnerabilities

  • licenses detected

    • Report a new vulnerability Found a mistake?

    Direct Vulnerabilities

    Known vulnerabilities in the https://nginx.org|nginx package. This does not include vulnerabilities belonging to this package’s dependencies.

    How to fix?

    Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

    Fix for free
    VulnerabilityVulnerable Version
    • M
    Buffer Over-read

    [1.5.13,1.26.2)[1.27.0,1.27.1)
    • M
    Use After Free

    [1.25.0,1.26.1)
    • M
    NULL Pointer Dereference

    [1.25.0,1.26.1)
    • M
    Out-of-bounds Write

    [1.25.0,1.26.1)
    • M
    Stack-based Buffer Overflow

    [1.25.0,1.26.1)
    • H
    NULL Pointer Dereference

    [,1.25.4)
    • M
    Use After Free

    [1.25.0,1.25.4)
    • H
    Denial of Service (DoS)

    [,1.25.3)
    • H
    Out-of-bounds Write

    [,1.22.1)[1.23.0,1.23.2)
    • H
    Out-of-bounds Write

    [,1.22.1)[1.23.0,1.23.2)
    • M
    Access Restriction Bypass

    [,1.21.0)
    • H
    NULL Pointer Dereference

    [,1.8.1)[1.9.0,1.9.10)
    • M
    Out-of-bounds Write

    [,1.0.10)
    • M
    HTTP Request Smuggling

    [,1.17.7)
    • M
    Improper Input Validation

    [,1.4.1)
    • H
    NULL Pointer Dereference

    [,1.10.1)[1.11.0,1.11.1)
    • M
    Information Exposure

    [,0.7.66)[0.8.0,0.8.40)
    • M
    Arbitrary Command Injection

    [,1.6.1)[1.7.0,1.7.4)
    • H
    Out-of-bounds Write

    [,1.5.12)
    • H
    Integer Overflow or Wraparound

    [,1.12.1)[1.13.0,1.13.3)
    • C
    Off-by-one Error

    [,1.20.1)
    • M
    Buffer Overflow

    [1.0.7,1.0.15)[1.1.3,1.1.19)
    • H
    Symlink Attack

    [,1.4.6-1)[1.6.0,1.6.2-5)[1.10.0,1.10.0-0)[1.10.0,1.10.1-0)[1.10.0,1.10.2)
    • H
    Out-of-bounds Write

    [1.3.9,1.4.1)
    • H
    Denial of Service (DoS)

    (1.15.0,1.15.6)
    • M
    Denial of Service (DoS)

    [,1.8.1)[1.9.0,1.9.10)
    • C
    Integer Overflow or Wraparound

    [,1.13.6)
    • M
    Information Exposure

    [0,)
    • M
    Access Restriction Bypass

    [,1.2.1)[1.3.0,1.3.1)
    • C
    Use After Free

    [,1.8.1)[1.9.0,1.9.10)
    • M
    Use After Free

    [,1.0.14)[1.1.0,1.1.17)
    • H
    Out-of-Bounds

    [,1.5.11)
    • H
    Access Restriction Bypass

    [1.3.9,1.4.1)
    • H
    Denial of Service (DoS)

    [1.9.5,1.16.1)[1.17.0,1.17.3)
    • M
    Out-of-Bounds

    [,0.5.38)[0.6.0,0.6.39)[0.7.0,0.7.62)[0.8.0,0.8.14)
    • M
    Directory Traversal

    [0.7.52,0.7.67)[0.8.40,0.8.41)
    • H
    Denial of Service (DoS)

    [1.9.5,1.16.1)[1.17.0,1.17.3)
    • H
    Denial of Service (DoS)

    [1.15.0,1.15.6)
    • H
    Out-of-bounds Write

    [,0.6.39)[0.7.0,0.7.62)[0.8.0,0.8.15)
    • M
    Insufficient Session Expiration

    [0.5.6,1.6.2)[1.7.4,1.7.5)
    • M
    Directory Traversal

    [,0.7.63)[0.8.0,0.8.17)
    • M
    Denial of Service (DoS)

    [1.1.3,1.15.6)
    • M
    Denial of Service (DoS)

    [1.9.5,1.16.1)[1.17.0,1.17.3)
    • M
    Denial of Service (DoS)

    [1.1.4,1.2.9)[1.3.9,1.4.1)
    • H
    Cross-site Scripting (XSS)

    [,1.5.7)