Zero Day MonitorZDM

← Back to list

EST

PRE-CVE

f5 · nginx

Denial of Service Vulnerability in NGINX

72% confidence

Description

A remote, anonymous attacker can exploit a vulnerability in NGINX to perform a Denial of Service (DoS) attack.

Affected Products

Vendor	Product	Versions
f5	nginx	—

Related News (1 articles)

Tier B

BSI Advisories2h ago

[UPDATE] [mittel] NGINX: Schwachstelle ermöglicht Denial of Service

→ No new info (linked only)

CISA KEV❌ No

Actively exploited❌ No

PublishedApr 10, 2026

Last enriched2h ago

Tags

denial of servicedosnginxvulnerability

Trending Score23

Source articles1

Independent1

Info Completeness5/14

Missing: cve_id, versions, cvss, epss, cwe, kev, exploit, patch, iocs

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

Multiple Vulnerabilities in NGINX and NGINX Plus Allow Denial of Service, Data Manipulation, Security Bypass, and Potential Arbitrary Code Execution

HIGHCVE-2026-27651

When the ngx_mail_auth_http_module module is enabled on NGINX Plus or NGINX Open Source, undisclosed requests can cause worker processes to terminate. This issue may occur when (1) CRAM-MD5 or APOP au

HIGHCVE-2026-27784

The 32-bit implementation of NGINX Open Source has a vulnerability in the ngx_http_mp4_module module, which might allow an attacker to over-read or over-write NGINX worker memory resulting in its term

HIGHCVE-2026-32647

NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_mp4_module module, which might allow an attacker to trigger a buffer over-read or over-write to the NGINX worker memory resulting

HIGHCVE-2026-27654

NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_dav_module module that might allow an attacker to trigger a buffer overflow to the NGINX worker process; this vulnerability may re

Pin to Dashboard

Verification

State: reported

Confidence: 72%

Vulnerability Timeline

CVE Published

Apr 10, 2026

Discovered by ZDM

Apr 10, 2026