VulnerableCode Package Details - pkg:nginx/nginx@1.19.4

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:nginx/nginx@1.19.4

Essentials
History (21)

purl	pkg:nginx/nginx@1.19.4

Next non-vulnerable version	1.29.7
Latest non-vulnerable version	1.29.7
Risk	3.7

Vulnerabilities affecting this package (7)

Vulnerability	Summary	Fixed by
VCID-2cu7-pyw5-t3dm Aliases: CVE-2026-28753	Injection in auth_http and XCLIENT	1.28.3 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 1.29.7 Affected by 0 other vulnerabilities.
VCID-3czf-dtzg-8kdm Aliases: CVE-2026-27651	NULL pointer dereference while using CRAM-MD5 or APOP	1.28.3 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 1.29.7 Affected by 0 other vulnerabilities.
VCID-d1c6-dt2p-9kaa Aliases: CVE-2026-1642	SSL upstream injection	1.28.2 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 1.29.5 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-fmvd-vyt7-mkfk Aliases: CVE-2026-27654	Buffer overflow in ngx_http_dav_module	1.28.3 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 1.29.7 Affected by 0 other vulnerabilities.
VCID-hemy-pnpj-sfg3 Aliases: CVE-2025-53859	Buffer overread in the ngx_mail_smtp_module	1.29.1 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-sxf9-qr1j-u3et Aliases: CVE-2026-27784	Buffer overflow in the ngx_http_mp4_module	1.28.3 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 1.29.7 Affected by 0 other vulnerabilities.
VCID-z3xb-4krg-rbae Aliases: CVE-2026-32647	Buffer overflow in the ngx_http_mp4_module	1.28.3 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 1.29.7 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-11T18:22:03.055546+00:00	Nginx Importer	Affected by	VCID-sxf9-qr1j-u3et	https://nginx.org/en/security_advisories.html	38.3.0
2026-04-11T18:21:33.287781+00:00	Nginx Importer	Affected by	VCID-3czf-dtzg-8kdm	https://nginx.org/en/security_advisories.html	38.3.0
2026-04-11T18:20:39.597189+00:00	Nginx Importer	Affected by	VCID-d1c6-dt2p-9kaa	https://nginx.org/en/security_advisories.html	38.3.0
2026-04-11T18:20:18.308249+00:00	Nginx Importer	Affected by	VCID-z3xb-4krg-rbae	https://nginx.org/en/security_advisories.html	38.3.0
2026-04-11T18:20:08.071696+00:00	Nginx Importer	Affected by	VCID-fmvd-vyt7-mkfk	https://nginx.org/en/security_advisories.html	38.3.0
2026-04-11T18:20:02.693107+00:00	Nginx Importer	Affected by	VCID-2cu7-pyw5-t3dm	https://nginx.org/en/security_advisories.html	38.3.0
2026-04-11T18:19:53.211136+00:00	Nginx Importer	Affected by	VCID-hemy-pnpj-sfg3	https://nginx.org/en/security_advisories.html	38.3.0
2026-04-02T17:46:54.853720+00:00	Nginx Importer	Affected by	VCID-sxf9-qr1j-u3et	https://nginx.org/en/security_advisories.html	38.1.0
2026-04-02T17:46:23.412040+00:00	Nginx Importer	Affected by	VCID-3czf-dtzg-8kdm	https://nginx.org/en/security_advisories.html	38.1.0
2026-04-02T17:45:23.349683+00:00	Nginx Importer	Affected by	VCID-d1c6-dt2p-9kaa	https://nginx.org/en/security_advisories.html	38.1.0
2026-04-02T17:45:01.602344+00:00	Nginx Importer	Affected by	VCID-z3xb-4krg-rbae	https://nginx.org/en/security_advisories.html	38.1.0
2026-04-02T17:44:50.588683+00:00	Nginx Importer	Affected by	VCID-fmvd-vyt7-mkfk	https://nginx.org/en/security_advisories.html	38.1.0
2026-04-02T17:44:44.978568+00:00	Nginx Importer	Affected by	VCID-2cu7-pyw5-t3dm	https://nginx.org/en/security_advisories.html	38.1.0
2026-04-02T17:44:33.579442+00:00	Nginx Importer	Affected by	VCID-hemy-pnpj-sfg3	https://nginx.org/en/security_advisories.html	38.1.0
2026-04-01T14:37:47.977859+00:00	Nginx Importer	Affected by	VCID-sxf9-qr1j-u3et	https://nginx.org/en/security_advisories.html	38.0.0
2026-04-01T14:37:07.899252+00:00	Nginx Importer	Affected by	VCID-3czf-dtzg-8kdm	https://nginx.org/en/security_advisories.html	38.0.0
2026-04-01T14:35:56.415441+00:00	Nginx Importer	Affected by	VCID-d1c6-dt2p-9kaa	https://nginx.org/en/security_advisories.html	38.0.0
2026-04-01T14:35:29.072770+00:00	Nginx Importer	Affected by	VCID-z3xb-4krg-rbae	https://nginx.org/en/security_advisories.html	38.0.0
2026-04-01T14:35:15.605081+00:00	Nginx Importer	Affected by	VCID-fmvd-vyt7-mkfk	https://nginx.org/en/security_advisories.html	38.0.0
2026-04-01T14:35:09.410660+00:00	Nginx Importer	Affected by	VCID-2cu7-pyw5-t3dm	https://nginx.org/en/security_advisories.html	38.0.0
2026-04-01T14:34:57.469886+00:00	Nginx Importer	Affected by	VCID-hemy-pnpj-sfg3	https://nginx.org/en/security_advisories.html	38.0.0