Zultys Security Advisory Notice - SAN26-002 Rev 1.0

Vulnerability in NGINX ngx_http_rewrite_module (CVE-2026-42945)

Severity: No Impact

Published: 2026-05-20

Updated: 2026-05-20

Revision: 1.0

Evaluated Products

MX-SE, MX-SE II, MX-E and MX-Virtual systems

Impacted Products

None

Affected Releases

Not applicable

Impacted 3rd Party Products

Not applicable

Introduction

On May 13, 2026 details of a Heap-based Buffer Overflow vulnerability in the NGINX ngx_http_rewrite_module was published in the CVE Vulnerability Database under CVE-2026-42945.

The vulnerability may result in the NGINX server restarting when an attacker sends specifically crafted packets.

Description

Zultys have evaluated the reported vulnerability and confirmed that the MX-SE, MX-SE II, MX-E and MX-Virtual products are not impacted.

Contact

If additional information is required contact support@zultys.com or your Authorized Zultys Channel Partner.

Download PDF Back to Security Advisories >

Zultys Security Advisory Notice - SAN26-002 Rev 1.0

Vulnerability in NGINX ngx_http_rewrite_module (CVE-2026-42945)

Evaluated Products

Impacted Products

Affected Releases

Impacted 3rd Party Products

Introduction

Description

Contact

Get started with smarter communications today.

Products

Platforms

Resources

Company