A vulnerability was found in Nginx up to 1.13.5 (Web Server) and classified as critical. This issue affects an unknown code block of the component Autoindex Module. Upgrading to version 1.13.6 eliminates this vulnerability. Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com. The best possible mitigation is suggested to be upgrading to the latest version.
Nginx up to 1.13.5 Autoindex Module integer overflow
- Virtual Patching
- June 10, 2021
- 11:08 pm
CVE-2022-47767 : SOLAR-LOG GATEWAY UP TO 4.2.7/5.1.1 SLCORE BACKDOOR
Description A backdoor in Solar-Log Gateway products allows remote access via web panel gaining super administration privileges to the attacker.
CVE-2022-45808 : LEARNPRESS PLUGIN UP TO 4.1.7.3.2 ON WORDPRESS SQL INJECTION
Description SQL Injection vulnerability in LearnPress – WordPress LMS Plugin
CVE-2023-21795 : MICROSOFT EDGE REMOTE CODE EXECUTION
Description Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2023-21796. References https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-21795 For More Information