Zultys Security Advisory Notice - SAN26-001 Rev 1.0

Vulnerability in NGINX ngx_http_proxy_v2_module (CVE-2026-42926)

Severity: No Impact

Published: 2026-05-20

Updated: 2026-05-20

Revision: 1.0

Evaluated Products

MX-SE, MX-SE II, MX-E and MX-Virtual systems

Impacted Products

None

Affected Releases

Not applicable

Impacted 3rd Party Products

Not applicable

Introduction

On May 13, 2026 details of an Encoding Error vulnerability in the NGINX ngx_http_proxy_v2_module was published in the CVE Vulnerability Database under CVE-2026-42926.

The vulnerability may allow an attacker to inject frame headers and payload bytes to an upstream peer.

Description

Zultys have evaluated the reported vulnerability and confirmed that the MX-SE, MX-SE II, MX-E and MX-Virtual products are not impacted.

Contact

If additional information is required contact support@zultys.com or your Authorized Zultys Channel Partner.

Download PDF Back to Security Advisories >

Zultys Security Advisory Notice - SAN26-001 Rev 1.0

Vulnerability in NGINX ngx_http_proxy_v2_module (CVE-2026-42926)

Evaluated Products

Impacted Products

Affected Releases

Impacted 3rd Party Products

Introduction

Description

Contact

Get started with smarter communications today.

Products

Platforms

Resources

Company