CVE Catalog

CVE-2026-42934

MediumCVSS 4.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.72%

49th percentile - higher than 49% of all known CVEs

Summary

NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_charset_module module. When charset, source_charset, and charset_map and proxy_pass with disabled buffering are configured, unauthenticated attackers can send requests that lead to a heap buffer over-read in the NGINX worker process.

Risk Assessment

Attackers may gain limited access to memory or cause a restart of the NGINX process, potentially leading to service downtime.

Recommendation

It is recommended to update to the latest version of NGINX to minimize the risk associated with this vulnerability.

Original NVD description (English source)

NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_charset_module module. When charset, source_charset, and charset_map and proxy_pass with disabled buffering ("off") directives are configured, unauthenticated attackers can send requests that with conditions beyond the attackers' control to cause a heap buffer over-read in the NGINX worker process, leading to limited disclosure of memory or a restart.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS