nginx
Safeguard articles tagged "nginx" — guides, analysis, and best practices for software supply chain and application security.
5 articles
CVE-2026-42945: A Buffer Overflow in NGINX's Rewrite Module Reaches Into Your Kubernetes Clusters (May 2026)
Disclosed May 17, 2026 with public PoC and in-the-wild activity, CVE-2026-42945 is a buffer overflow in NGINX's ngx_http_rewrite_module. It affects core NGINX and the ingress controllers that wrap it, putting cluster ingress in scope.
PHP-FPM/Nginx path disclosure RCE (CVE-2019-11043)
CVE-2019-11043 let attackers gain unauthenticated RCE on PHP-FPM/Nginx stacks via a PATH_INFO underflow. Here's the impact, timeline, and fixes.
Nginx 1.18.0 Vulnerabilities: Audit and Upgrade Path
Nginx 1.18.0 left support in 2021, but not every scanner hit is exploitable — and many distro builds are already patched. How to audit what you actually run and get onto a supported line.
Nginx 1.20.1 Vulnerabilities: What to Patch
Nginx 1.20.1 fixed a real, exploitable DNS resolver bug — if you're still running an older 1.20.x or 1.19.x build, here's what the fix addressed and why it matters.
NGINX Security Configuration Guide for Production Deployments
NGINX powers a third of the internet. Its default configuration is optimized for getting started, not for production security. Here is the gap.