1. NGINX Rewrite Module Heap Buffer Overflow Vulnerability Exposes Servers to Crash or Code Execution
A critical vulnerability in NGINX's rewrite module enables unauthenticated attackers to trigger heap buffer overflow conditions through specially crafted HTTP requests. The flaw, tracked as CVE-2026-42945, affects both NGINX Plus and NGINX Open Source installations. Under specific configuration conditions, the ngx_http...