Search for packages
| purl | pkg:nginx/nginx@1.21.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-2gtf-635s-aaab
Aliases: CVE-2022-41742 |
NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1 and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module ngx_http_mp4_module that might allow a local attacker to cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted audio or video file. The issue affects only NGINX products that are built with the module ngx_http_mp4_module, when the mp4 directive is used in the configuration file. Further, the attack is possible only if an attacker can trigger processing of a specially crafted audio or video file with the module ngx_http_mp4_module. |
Affected by 1 other vulnerability. Affected by 1 other vulnerability. |
|
VCID-c9xc-nm4d-aaar
Aliases: CVE-2024-7347 |
Buffer overread in the ngx_http_mp4_module |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-q6hd-xazy-aaaj
Aliases: CVE-2022-41741 |
NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1 and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module ngx_http_mp4_module that might allow a local attacker to corrupt NGINX worker memory, resulting in its termination or potential other impact using a specially crafted audio or video file. The issue affects only NGINX products that are built with the ngx_http_mp4_module, when the mp4 directive is used in the configuration file. Further, the attack is possible only if an attacker can trigger processing of a specially crafted audio or video file with the module ngx_http_mp4_module. |
Affected by 1 other vulnerability. Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-xdng-3k7v-aaaj | 1-byte memory overwrite in resolver |
CVE-2021-23017
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-20T16:26:27.749510+00:00 | Nginx Importer | Affected by | VCID-c9xc-nm4d-aaar | https://nginx.org/en/security_advisories.html | 36.1.3 |
| 2025-06-04T08:01:26.154751+00:00 | Nginx Importer | Affected by | VCID-c9xc-nm4d-aaar | https://nginx.org/en/security_advisories.html | 36.1.0 |
| 2025-06-02T21:53:17.403779+00:00 | Nginx Importer | Affected by | VCID-c9xc-nm4d-aaar | https://nginx.org/en/security_advisories.html | 36.1.2 |
| 2025-04-03T22:47:08.521681+00:00 | Nginx Importer | Affected by | VCID-c9xc-nm4d-aaar | https://nginx.org/en/security_advisories.html | 36.0.0 |
| 2025-03-28T16:29:47.563687+00:00 | Nginx Importer | Fixing | VCID-xdng-3k7v-aaaj | https://nginx.org/en/security_advisories.html | 36.0.0 |
| 2025-02-18T08:38:36.244724+00:00 | Nginx Importer | Affected by | VCID-c9xc-nm4d-aaar | https://nginx.org/en/security_advisories.html | 35.1.0 |
| 2025-01-16T23:01:18.847321+00:00 | Nginx Importer | Fixing | VCID-xdng-3k7v-aaaj | None | 35.1.0 |
| 2024-10-08T04:28:22.075054+00:00 | Nginx Importer | Affected by | VCID-c9xc-nm4d-aaar | https://nginx.org/en/security_advisories.html | 34.0.2 |
| 2024-10-08T04:28:04.534270+00:00 | Nginx Importer | Affected by | VCID-2gtf-635s-aaab | https://nginx.org/en/security_advisories.html | 34.0.2 |
| 2024-10-08T04:28:00.292655+00:00 | Nginx Importer | Affected by | VCID-q6hd-xazy-aaaj | https://nginx.org/en/security_advisories.html | 34.0.2 |
| 2024-10-08T04:27:56.103281+00:00 | Nginx Importer | Fixing | VCID-xdng-3k7v-aaaj | https://nginx.org/en/security_advisories.html | 34.0.2 |
| 2024-09-23T04:09:42.388385+00:00 | Nginx Importer | Affected by | VCID-c9xc-nm4d-aaar | https://nginx.org/en/security_advisories.html | 34.0.1 |
| 2024-09-23T04:09:25.041098+00:00 | Nginx Importer | Affected by | VCID-2gtf-635s-aaab | https://nginx.org/en/security_advisories.html | 34.0.1 |
| 2024-09-23T04:09:21.020538+00:00 | Nginx Importer | Affected by | VCID-q6hd-xazy-aaaj | https://nginx.org/en/security_advisories.html | 34.0.1 |
| 2024-09-17T22:48:22.447004+00:00 | Nginx Importer | Fixing | VCID-xdng-3k7v-aaaj | https://nginx.org/en/security_advisories.html | 34.0.1 |
| 2024-04-24T06:34:04.184557+00:00 | Nginx Importer | Affected by | VCID-2gtf-635s-aaab | None | 34.0.0rc4 |
| 2024-04-24T06:34:00.083751+00:00 | Nginx Importer | Affected by | VCID-2gtf-635s-aaab | https://nginx.org/en/security_advisories.html | 34.0.0rc4 |
| 2024-04-24T06:33:52.446131+00:00 | Nginx Importer | Affected by | VCID-q6hd-xazy-aaaj | https://nginx.org/en/security_advisories.html | 34.0.0rc4 |
| 2024-04-24T06:33:44.520407+00:00 | Nginx Importer | Affected by | VCID-q6hd-xazy-aaaj | None | 34.0.0rc4 |
| 2024-04-24T06:33:35.544460+00:00 | Nginx Importer | Fixing | VCID-xdng-3k7v-aaaj | None | 34.0.0rc4 |
| 2024-04-24T06:33:30.054952+00:00 | Nginx Importer | Fixing | VCID-xdng-3k7v-aaaj | https://nginx.org/en/security_advisories.html | 34.0.0rc4 |
| 2024-01-10T09:03:00.569657+00:00 | Nginx Importer | Affected by | VCID-2gtf-635s-aaab | None | 34.0.0rc2 |
| 2024-01-10T09:02:56.045217+00:00 | Nginx Importer | Affected by | VCID-2gtf-635s-aaab | https://nginx.org/en/security_advisories.html | 34.0.0rc2 |
| 2024-01-10T09:02:47.264329+00:00 | Nginx Importer | Affected by | VCID-q6hd-xazy-aaaj | https://nginx.org/en/security_advisories.html | 34.0.0rc2 |
| 2024-01-10T09:02:38.372684+00:00 | Nginx Importer | Affected by | VCID-q6hd-xazy-aaaj | None | 34.0.0rc2 |
| 2024-01-10T09:02:29.002715+00:00 | Nginx Importer | Fixing | VCID-xdng-3k7v-aaaj | None | 34.0.0rc2 |
| 2024-01-10T09:02:23.083037+00:00 | Nginx Importer | Fixing | VCID-xdng-3k7v-aaaj | https://nginx.org/en/security_advisories.html | 34.0.0rc2 |
| 2024-01-04T01:48:11.709895+00:00 | Nginx Importer | Affected by | VCID-2gtf-635s-aaab | None | 34.0.0rc1 |
| 2024-01-04T01:48:07.386039+00:00 | Nginx Importer | Affected by | VCID-2gtf-635s-aaab | https://nginx.org/en/security_advisories.html | 34.0.0rc1 |
| 2024-01-04T01:47:58.843188+00:00 | Nginx Importer | Affected by | VCID-q6hd-xazy-aaaj | https://nginx.org/en/security_advisories.html | 34.0.0rc1 |
| 2024-01-04T01:47:50.079236+00:00 | Nginx Importer | Affected by | VCID-q6hd-xazy-aaaj | None | 34.0.0rc1 |
| 2024-01-04T01:47:40.984078+00:00 | Nginx Importer | Fixing | VCID-xdng-3k7v-aaaj | None | 34.0.0rc1 |
| 2024-01-03T18:31:51.145115+00:00 | Nginx Importer | Fixing | VCID-xdng-3k7v-aaaj | https://nginx.org/en/security_advisories.html | 34.0.0rc1 |