Nginx plus
This hub aggregates every CVE we track for Nginx plus, a product in the networking infrastructure space. Use it to gauge the current risk picture and drill into individual advisories.
28
CVEs tracked
0
Critical
13
High
1
In CISA KEV
Severity distribution
HIGH13MEDIUM13LOW2
Monthly trend
0
2
0
0
0
0
0
1
0
0
0
0
0
1
0
0
0
0
0
1
5
0
6
2
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Nginx plus.
- CVE-2026-48142NGINX ngx_http_charset_module vulnerability4.8
- CVE-2026-42055NGINX ngx_http_proxy_v2_module and ngx_http_grpc_module vulnerability8.1
- CVE-2026-9256NGINX ngx_http_rewrite_module vulnerability8.1
- CVE-2026-40460NGINX ngx_quic_module vulnerability6.5
- CVE-2026-42934NGINX ngx_http_charset_module vulnerability4.8
- CVE-2026-42946NGINX ngx_http_scgi_module and ngx_http_uwsgi_module vulnerability6.5
- CVE-2026-40701NGINX ngx_http_ssl_module vulnerability4.8
- CVE-2026-42945NGINX ngx_http_rewrite_module vulnerability8.1
- CVE-2026-27651NGINX ngx_mail_auth_http_module vulnerability7.5
- CVE-2026-27654NGINX ngx_http_dav_module vulnerability8.2
- CVE-2026-28755NGINX ngx_stream_ssl_module vulnerability5.4
- CVE-2026-28753NGINX ngx_mail_proxy_module vulnerability3.7
- CVE-2026-32647NGINX ngx_http_mp4_module vulnerability7.8
- CVE-2026-1642NGINX vulnerability5.9
- CVE-2025-53859NGINX ngx_mail_smtp_module vulnerability3.7
Product normalization is registry-driven with AI assist and human review. How it works