Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-4hb5-9vcu-1qcx
Vulnerability ID VCID-4hb5-9vcu-1qcx
Aliases CVE-2026-9256
Summary Buffer overflow in the ngx_http_rewrite_module
Status Published
Exploitability None
Weighted Severity None
Risk None
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.00237 https://api.first.org/data/v1/epss?cve=CVE-2026-9256
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2026-9256
https://my.f5.com/manage/s/article/K000161377
CVE-2026-9256 https://nvd.nist.gov/vuln/detail/CVE-2026-9256
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.4697
EPSS Score 0.00237
Published At May 30, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-05-30T20:31:03.273118+00:00 Nginx Importer Import https://nginx.org/en/security_advisories.html 38.6.0