#heap-buffer-overflow

[ follow ]
#nginx #cve-2026-42945 #remote-code-execution #denial-of-service #web-server-security
#nginx
fromSecurityWeek
1 week ago
Information security

PoC Code Published for Critical NGINX Vulnerability

CVE-2026-42945 enables heap buffer overflow in NGINX rewrite module, causing DoS and potential RCE when ASLR is disabled.
fromThe Hacker News
2 weeks ago
Information security

18-Year-Old NGINX Rewrite Module Flaw Enables Unauthenticated RCE

NGINX Rift is a critical ngx_http_rewrite_module heap buffer overflow enabling remote code execution or denial-of-service via crafted requests.
Information security
fromtheregister
1 week ago

NGINX Rift attackers waste no time targeting exposed servers

An unauthenticated heap buffer overflow in NGINX can crash worker processes and, under rare conditions, enable code execution, with active exploitation observed days after disclosure.
Information security
fromSecurityWeek
1 week ago

Exploitation of Critical NGINX Vulnerability Begins

CVE-2026-42945 enables remote heap buffer overflow exploitation in NGINX rewrite, with DoS on default setups and possible RCE when ASLR is disabled.
Information security
fromThe Hacker News
1 week ago

NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE

CVE-2026-42945 in NGINX heap overflow is actively exploited, enabling unauthenticated worker crashes and potential RCE when ASLR is disabled and specific configuration is known.
Information security
fromThe Hacker News
2 weeks ago

18-Year-Old NGINX Rewrite Module Flaw Enables Unauthenticated RCE

NGINX Rift is a critical ngx_http_rewrite_module heap buffer overflow enabling remote code execution or denial-of-service via crafted requests.
more#nginx
[ Load more ]