Heap-based buffer overflow in NGINX Plus and NGINX Open Source - CVE-2026-42533
Published: July 16, 2026
NGINX Plus
NGINX Open Source
Detailed vulnerability description
The vulnerability allows a remote attacker to execute arbitrary code or cause a denial of service.
The vulnerability exists due to heap-based buffer overflow in the map directive with regex matching when processing crafted HTTP requests that trigger regex capture variable references before the map output variable. A remote attacker can send crafted HTTP requests to execute arbitrary code or cause a denial of service.
Code execution is possible on systems with ASLR disabled or when ASLR can be bypassed. This is a data plane issue only.