{"id":"CVE-2026-42946","details":"A vulnerability exists in the ngx_http_scgi_module and ngx_http_uwsgi_module modules that may result in excessive memory allocation or an over-read of data. When scgi_pass or uwsgi_pass is configured, an unauthenticated attacker with man-in-the-middle (MITM) ability to control responses from an upstream server may be able to read the memory of the NGINX worker process or restart it.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.","aliases":["BIT-nginx-2026-42946","BIT-nginx-gateway-2026-42946"],"modified":"2026-06-26T03:54:36.236709756Z","published":"2026-05-13T16:16:50.340Z","related":["SUSE-SU-2026:2050-1","SUSE-SU-2026:21832-1","SUSE-SU-2026:2370-1","openSUSE-SU-2026:10796-1","openSUSE-SU-2026:20796-1"],"database_specific":{"unresolved_ranges":[{"vendor_product":"f5:dos","source":"CPE_RANGE","extracted_events":[{"introduced":"4.3.0"},{"last_affected":"4.7.0"}],"cpes":["cpe:2.3:a:f5:dos:*:*:*:*:*:nginx:*:*"]},{"vendor_product":"f5:nginx_instance_manager","source":"CPE_RANGE","extracted_events":[{"introduced":"2.16.0"},{"last_affected":"2.22.0"}],"cpes":["cpe:2.3:a:f5:nginx_instance_manager:*:*:*:*:*:*:*:*"]},{"vendor_product":"f5:nginx_plus","source":"CPE_RANGE","extracted_events":[{"introduced":"r32"},{"last_affected":"r36"}],"cpes":["cpe:2.3:a:f5:nginx_plus:*:*:*:*:*:*:*:*"]},{"vendor_product":"f5:waf","source":"CPE_RANGE","extracted_events":[{"introduced":"4.9.0"},{"last_affected":"4.16.0"},{"introduced":"5.1.0"},{"last_affected":"5.8.0"},{"introduced":"5.9.0"},{"last_affected":"5.12.1"}],"cpes":["cpe:2.3:a:f5:waf:*:*:*:*:*:nginx:*:*"]},{"vendor_product":"f5:dos","source":"CPE_STRING","extracted_events":[{"last_affected":"4.8.0"}],"cpes":["cpe:2.3:a:f5:dos:4.8.0:*:*:*:*:nginx:*:*"]}]},"references":[{"type":"ADVISORY","url":"https://my.f5.com/manage/s/article/K000161027"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/nginx/kubernetes-ingress","events":[{"introduced":"33971b8ff54bc55785a7b38c07a21e03bda25080"},{"last_affected":"561824f3077b7615c2fa764bd6d8e7a47e184857"},{"introduced":"81bae7d0360fdf277b2d3e355d02e410ee211ef8"},{"last_affected":"43349033e28d0b6aa38773ff840deba079654a4f"},{"introduced":"8dfabca757830d0821e86206c2db83044e6696f0"},{"last_affected":"cd864d71a5e3b6698b80daee02b2785c4020db10"}],"database_specific":{"cpe":"cpe:2.3:a:f5:nginx_ingress_controller:*:*:*:*:*:*:*:*","source":"CPE_RANGE","extracted_events":[{"introduced":"3.5.0"},{"last_affected":"3.7.2"},{"introduced":"4.0.0"},{"last_affected":"4.0.1"},{"introduced":"5.0.0"},{"last_affected":"5.4.2"}]}}],"versions":["v4.0.1","v4.0.0"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-42946.json"}},{"ranges":[{"type":"GIT","repo":"https://github.com/nginx/nginx","events":[{"introduced":"8a00db8fa12d871ecf067b2ea7fb8e9e71f0e3bf"},{"last_affected":"955370fc8c12b1a945941f844adc9df49a0f3f32"},{"introduced":"a2a09a84eb0a7059880500e70b40796ab1dd0c4d"},{"last_affected":"6e14e954aaacce9a433d9b07b4653809c7594ab8"}],"database_specific":{"cpe":"cpe:2.3:a:f5:nginx_open_source:*:*:*:*:*:*:*:*","source":"CPE_RANGE","extracted_events":[{"introduced":"0.8.42"},{"last_affected":"0.9.7"},{"introduced":"1.0.0"},{"last_affected":"1.30.0"}]}}],"versions":["release-1.30.0","release-1.29.8","release-1.29.7","release-1.29.6","release-1.29.5","release-1.29.4","release-1.29.3","release-1.29.2","release-1.29.1","release-1.29.0","release-1.27.5","release-1.27.4","release-1.27.3","release-1.27.2","release-1.27.1","release-1.27.0","release-1.25.5","release-1.25.4","release-1.25.3","release-1.25.2","release-1.25.1","release-1.25.0","release-1.23.4","release-1.23.3","release-1.23.2","release-1.23.1","release-1.23.0","release-1.21.6","release-1.21.5","release-1.21.4","release-1.21.3","release-1.21.2","release-1.21.1","release-1.21.0","release-1.19.10","release-1.19.9","release-1.19.8","release-1.19.7","release-1.19.6","release-1.19.5","release-1.19.4","release-1.19.3","release-1.19.2","release-1.19.1","release-1.19.0","release-1.17.10","release-1.17.9","release-1.17.8","release-1.17.7","release-1.17.6","release-1.17.5","release-1.17.4","release-1.17.3","release-1.17.2","release-1.17.1","release-1.17.0","release-1.15.12","release-1.15.11","release-1.15.10","release-1.15.9","release-1.15.8","release-1.15.7","release-1.15.6","release-1.15.5","release-1.15.4","release-1.15.3","release-1.15.2","release-1.15.1","release-1.15.0","release-1.13.12","release-1.13.11","release-1.13.10","release-1.13.9","release-1.13.8","release-1.13.7","release-1.13.6","release-1.13.5","release-1.13.4","release-1.13.3","release-1.13.2","release-1.13.1","release-1.13.0","release-1.11.13","release-1.11.12","release-1.11.11","release-1.11.10","release-1.11.9","release-1.11.8","release-1.11.7","release-1.11.6","release-1.11.5","release-1.11.4","release-1.11.3","release-1.11.2","release-1.11.1","release-1.11.0","release-1.9.15","release-1.9.14","release-1.9.13","release-1.9.12","release-1.9.11","release-1.9.10","release-1.9.9","release-1.9.8","release-1.9.7","release-1.9.6","release-1.9.5","release-1.9.4","release-1.9.3","release-1.9.2","release-1.9.1","release-1.9.0","release-1.7.12","release-1.7.11","release-1.7.10","release-1.7.9","release-1.7.8","release-1.7.7","release-1.7.6","release-1.7.5","release-1.7.4","release-1.7.3","release-1.7.2","release-1.7.1","release-1.7.0","release-1.5.13","release-1.5.12","release-1.5.11","release-1.5.10","release-1.5.9","release-1.5.8","release-1.5.7","release-1.5.6","release-1.5.5","release-1.5.4","release-1.5.3","release-1.5.2","release-1.5.1","release-1.5.0","release-1.4.0","release-1.3.16","release-1.3.15","release-1.3.14","release-1.3.13","release-1.3.12","release-1.3.11","release-1.3.10","release-1.3.9","release-1.3.8","release-1.3.7","release-1.3.6","release-1.3.5","release-1.3.4","release-1.3.3","release-1.3.2","release-1.3.1","release-1.3.0","release-1.2.0","release-1.1.19","release-1.1.18","release-1.1.17","release-1.1.16","release-1.1.15","release-1.1.14","release-1.1.13","release-1.1.12","release-1.1.11","release-1.1.10","release-1.1.9","release-1.1.8","release-1.1.7","release-1.1.6","release-1.1.5","release-1.1.4","release-1.1.3","release-1.1.2","release-1.1.1","release-1.1.0","release-1.0.5","release-1.0.4","release-1.0.3","release-1.0.2","release-1.0.1","release-1.0.0","release-0.9.7","release-0.9.6","release-0.9.5","release-0.9.4","release-0.9.3","release-0.9.2","release-0.9.1","release-0.9.0","release-0.8.53","release-0.8.52","release-0.8.51","release-0.8.50","release-0.8.49","release-0.8.48","release-0.8.47","release-0.8.46","release-0.8.45","release-0.8.44","release-0.8.43","release-0.8.42"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-42946.json"}},{"ranges":[{"type":"GIT","repo":"https://github.com/nginx/nginx-gateway-fabric","events":[{"introduced":"3a372747333fb1db372af7cf0b18ed7eef7c91f7"},{"last_affected":"532db6a20b2912fe397211eef9f8d564d46a4bdd"},{"introduced":"7dad8b31e3f0c3eadce36fed8c276e83e6583d24"},{"last_affected":"95a66d8cec0ce98e1985aeab728317c5ba7ec0c6"}],"database_specific":{"cpe":"cpe:2.3:a:f5:nginx_gateway_fabric:*:*:*:*:*:*:*:*","source":"CPE_RANGE","extracted_events":[{"introduced":"1.3.0"},{"last_affected":"1.6.2"},{"introduced":"2.0.0"},{"last_affected":"2.6.0"}]}}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-42946.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"}]}