Zultys Security Advisory Notice - SAN26-004 Rev 1.0

Vulnerability in NGINX ngx_http_charset_module (CVE-2026-42934)

Severity: No Impact

Published: 2026-05-20

Updated: 2026-05-20

Revision: 1.0

Evaluated Products

MX-SE, MX-SE II, MX-E and MX-Virtual systems

Impacted Products

None

Affected Releases

Not applicable

Impacted 3rd Party Products

Not applicable

Introduction

On May 13, 2026 details of vulnerabilities in the NGINX ngx_http_charset_module were published in the CVE Vulnerability Database under CVE-2026-42934.

The vulnerabilities may allow an unauthenticated attacker to send requests which cause a heap buffer over-read leading to limited disclosure of memory or a restart.

Description

Zultys have evaluated the reported vulnerability and confirmed that the MX-SE, MX-SE II, MX-E and MX-Virtual products are not impacted.

Contact

If additional information is required contact support@zultys.com or your Authorized Zultys Channel Partner.

Download PDF Back to Security Advisories >

Zultys Security Advisory Notice - SAN26-004 Rev 1.0

Vulnerability in NGINX ngx_http_charset_module (CVE-2026-42934)

Evaluated Products

Impacted Products

Affected Releases

Impacted 3rd Party Products

Introduction

Description

Contact

Get started with smarter communications today.

Products

Platforms

Resources

Company