Multiple Vulnerabilities in NGINX Could Allow for Remote Code Execution
Multiple vulnerabilities have been discovered in NGINX, the most severe of which could allow for remote code execution. NGINX is a software used for web serving, reverse proxying, caching, and load balancing. Successful exploitation of the most severe of these vulnerabilities may allow an unauthenticated threat actor to crash vulnerable NGINX worker processes by sending crafted HTTP requests. Additionally, for systems with Address Space Layout Randomization (ASLR) disabled, exploitation may result in remote code execution. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have less rights on the system could be less impacted than those who operate with administrative user rights.
Multiple vulnerabilities have been discovered in NGINX, allowing for remote code execution and potentially leading to unauthorized access or data corruption. The most severe vulnerability has a CVSS score of 8.1 (HIGH), indicating a significant risk.
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:HCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:LCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:LCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:LRead the full article
This is a curated summary. The complete article is available at CIS Advisories.