Skip to main content

Nginx Unit

2 CVEs product

Monthly

CVE-2025-1695 MEDIUM This Month

In NGINX Unit before version 1.34.2 with the Java Language Module in use, undisclosed requests can lead to an infinite loop and cause an increase in CPU resource utilization. Rated medium severity (CVSS 6.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Nginx Java Denial Of Service Nginx Unit
NVD
CVSS 4.0
6.9
EPSS
0.1%
CVE-2019-7401 CRITICAL Act Now

NGINX Unit before 1.7.1 might allow an attacker to cause a heap-based buffer overflow in the router process with a specially crafted request. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Buffer Overflow Nginx Memory Corruption Nginx Unit
NVD
CVSS 3.0
9.8
EPSS
2.9%
EPSS 0% CVSS 6.9
MEDIUM This Month

In NGINX Unit before version 1.34.2 with the Java Language Module in use, undisclosed requests can lead to an infinite loop and cause an increase in CPU resource utilization. Rated medium severity (CVSS 6.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Nginx Java Denial Of Service +1
NVD
EPSS 3% CVSS 9.8
CRITICAL Act Now

NGINX Unit before 1.7.1 might allow an attacker to cause a heap-based buffer overflow in the router process with a specially crafted request. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Buffer Overflow Nginx +2
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy