A vulnerability was found in Nginx up to 1.13.5 (Web Server) and classified as critical. This issue affects an unknown code block of the component Autoindex Module. Upgrading to version 1.13.6 eliminates this vulnerability. Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com. The best possible mitigation is suggested to be upgrading to the latest version.
Nginx up to 1.13.5 Autoindex Module integer overflow
- Virtual Patching
- June 10, 2021
- 11:08 pm
Contact us to get started
CVE-2022-36961 : SOLARWINDS ORION PLATFORM VERB SQL INJECTION
Description A vulnerable component of Orion Platform was vulnerable to SQL Injection, an authenticated attacker could leverage this for privilege
CVE-2022-42302 : VERITAS NETBACKUP UP TO 10.0 NBFSMCLIENT SERVICE SQL INJECTION
Description An issue was discovered in Veritas NetBackup through 10.0 and related Veritas products. The NetBackup Primary server is vulnerable
CVE-2022-39266 : ISOLATED-VM UP TO 4.3.6 API PROTECTION MECHANISM
Description isolated-vm is a library for nodejs which gives the user access to v8’s Isolate interface. In versions 4.3.6 and