CVE-2026-27944
CRITICAL
GHSA-g9w5-qffc-6762
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
4Description
Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.3, the /api/backup endpoint is accessible without authentication and discloses the encryption keys required to decrypt the backup in the X-Backup-Security response header. This allows an unauthenticated attacker to download a full system backup containing sensitive data (user credentials, session tokens, SSL private keys, Nginx configurations) and decrypt it immediately. This issue has been patched in version 2.3.3.
Analysis
Unauthenticated backup download and RCE in Nginx UI before 2.3.3. EPSS 1.0%. …
Sign in for full analysis, threat intelligence, and remediation guidance.
Remediation
Within 24 hours: Identify all systems running Nginx UI versions up to 2.3.3 and isolate them from untrusted networks; disable Nginx UI administrative interfaces if not actively required. Within 7 days: Implement network-level access controls restricting UI access to authorized administrators only; deploy WAF rules blocking exploitation patterns if available from the vendor. …
Sign in for detailed remediation steps.
Priority Score
Vendor Status
Share
External POC / Exploit Code
Leaving vuln.today