NGINX Rift: Achieving NGINX Remote Code Execution via an 18-Year-Old Vulnerability
Summary
This post analyzes CVE-2026-42945 and related NGINX vulnerabilities, detailing how a two-pass script engine can cause a heap overflow leading to remote code execution. It documents four confirmed CVEs, the exploitation technique using URI escaping, and the affected versions, with a PoC and a timeline of disclosures. The piece highlights defensive takeaways for hardening NGINX configurations and patch management.