VulnerableCode Package Details - pkg:nginx/nginx@0.8.23

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:nginx/nginx@0.8.23

Essentials
History (21)

purl	pkg:nginx/nginx@0.8.23

Next non-vulnerable version	1.29.7
Latest non-vulnerable version	1.29.7
Risk	3.7

Vulnerabilities affecting this package (6)

Vulnerability	Summary	Fixed by
VCID-2cu7-pyw5-t3dm Aliases: CVE-2026-28753	Injection in auth_http and XCLIENT	1.28.3 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 1.29.7 Affected by 0 other vulnerabilities.
VCID-3czf-dtzg-8kdm Aliases: CVE-2026-27651	NULL pointer dereference while using CRAM-MD5 or APOP	1.28.3 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 1.29.7 Affected by 0 other vulnerabilities.
VCID-fmvd-vyt7-mkfk Aliases: CVE-2026-27654	Buffer overflow in ngx_http_dav_module	1.28.3 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 1.29.7 Affected by 0 other vulnerabilities.
VCID-hemy-pnpj-sfg3 Aliases: CVE-2025-53859	Buffer overread in the ngx_mail_smtp_module	1.29.1 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-ktxc-d5t4-bkhg Aliases: CVE-2011-4315	Buffer overflow in resolver	1.0.10 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 1.1.8 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-wsxq-wqqr-n3ey Aliases: CVE-2012-1180	Memory disclosure with specially crafted backend responses	1.0.14 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 1.1.17 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-jau7-gfz8-dkfa	The renegotiation vulnerability in SSL protocol	CVE-2009-3555 GHSA-f7w7-6pjc-wwm6 VU#120541

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-11T18:22:16.432950+00:00	Nginx Importer	Fixing	VCID-jau7-gfz8-dkfa	https://nginx.org/en/security_advisories.html	38.3.0
2026-04-11T18:21:32.443612+00:00	Nginx Importer	Affected by	VCID-3czf-dtzg-8kdm	https://nginx.org/en/security_advisories.html	38.3.0
2026-04-11T18:21:19.791438+00:00	Nginx Importer	Affected by	VCID-wsxq-wqqr-n3ey	https://nginx.org/en/security_advisories.html	38.3.0
2026-04-11T18:20:57.748686+00:00	Nginx Importer	Affected by	VCID-ktxc-d5t4-bkhg	https://nginx.org/en/security_advisories.html	38.3.0
2026-04-11T18:20:07.218880+00:00	Nginx Importer	Affected by	VCID-fmvd-vyt7-mkfk	https://nginx.org/en/security_advisories.html	38.3.0
2026-04-11T18:20:01.841365+00:00	Nginx Importer	Affected by	VCID-2cu7-pyw5-t3dm	https://nginx.org/en/security_advisories.html	38.3.0
2026-04-11T18:19:52.342624+00:00	Nginx Importer	Affected by	VCID-hemy-pnpj-sfg3	https://nginx.org/en/security_advisories.html	38.3.0
2026-04-02T17:47:09.180582+00:00	Nginx Importer	Fixing	VCID-jau7-gfz8-dkfa	https://nginx.org/en/security_advisories.html	38.1.0
2026-04-02T17:46:22.579509+00:00	Nginx Importer	Affected by	VCID-3czf-dtzg-8kdm	https://nginx.org/en/security_advisories.html	38.1.0
2026-04-02T17:46:08.771565+00:00	Nginx Importer	Affected by	VCID-wsxq-wqqr-n3ey	https://nginx.org/en/security_advisories.html	38.1.0
2026-04-02T17:45:43.766262+00:00	Nginx Importer	Affected by	VCID-ktxc-d5t4-bkhg	https://nginx.org/en/security_advisories.html	38.1.0
2026-04-02T17:44:49.753759+00:00	Nginx Importer	Affected by	VCID-fmvd-vyt7-mkfk	https://nginx.org/en/security_advisories.html	38.1.0
2026-04-02T17:44:44.130602+00:00	Nginx Importer	Affected by	VCID-2cu7-pyw5-t3dm	https://nginx.org/en/security_advisories.html	38.1.0
2026-04-02T17:44:32.737076+00:00	Nginx Importer	Affected by	VCID-hemy-pnpj-sfg3	https://nginx.org/en/security_advisories.html	38.1.0
2026-04-01T14:37:06.974502+00:00	Nginx Importer	Affected by	VCID-3czf-dtzg-8kdm	https://nginx.org/en/security_advisories.html	38.0.0
2026-04-01T14:36:49.906722+00:00	Nginx Importer	Affected by	VCID-wsxq-wqqr-n3ey	https://nginx.org/en/security_advisories.html	38.0.0
2026-04-01T14:36:21.987697+00:00	Nginx Importer	Affected by	VCID-ktxc-d5t4-bkhg	https://nginx.org/en/security_advisories.html	38.0.0
2026-04-01T14:35:14.703283+00:00	Nginx Importer	Affected by	VCID-fmvd-vyt7-mkfk	https://nginx.org/en/security_advisories.html	38.0.0
2026-04-01T14:35:08.519138+00:00	Nginx Importer	Affected by	VCID-2cu7-pyw5-t3dm	https://nginx.org/en/security_advisories.html	38.0.0
2026-04-01T14:34:56.455947+00:00	Nginx Importer	Affected by	VCID-hemy-pnpj-sfg3	https://nginx.org/en/security_advisories.html	38.0.0
2026-04-01T12:31:46.658570+00:00	Nginx Importer	Fixing	VCID-jau7-gfz8-dkfa	https://nginx.org/en/security_advisories.html	38.0.0