Known Vulnerabilities for products from Nginxui
Listed below are 17 of the newest known vulnerabilities associated with the vendor "Nginxui".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-44015 json | Nginx UI is a web user interface for the Nginx web server. In 2.3.4 and earlier, an authenticated user can perform Server-Sid... | Not Provided | 2026-05-12 | 2026-05-14 |
| CVE-2026-42238 json | Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.8, nginx-ui exposes a backup restore endpoint... | Not Provided | 2026-05-04 | 2026-05-06 |
| CVE-2026-42223 json | Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.8, the GetSettings API handler (api/settings/... | Not Provided | 2026-05-04 | 2026-05-06 |
| CVE-2026-42222 json | Nginx UI is a web user interface for the Nginx web server. In version 2.3.5, an unauthenticated bootstrap takeover exists in ... | Not Provided | 2026-05-04 | 2026-05-06 |
| CVE-2026-42221 json | Nginx UI is a web user interface for the Nginx web server. From version 2.0.0 to before version 2.3.8, an unauthenticated net... | Not Provided | 2026-05-04 | 2026-05-06 |
| CVE-2026-42220 json | Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.8, an authenticated user can call GET /api/se... | Not Provided | 2026-05-04 | 2026-05-06 |
| CVE-2026-34403 json | Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.5, all WebSocket endpoints in nginx-ui use a ... | Not Provided | 2026-04-20 | 2026-04-22 |
| CVE-2026-33032 json | Nginx UI is a web user interface for the Nginx web server. In versions 2.3.5 and prior, the nginx-ui MCP (Model Context Proto... | Not Provided | 2026-03-30 | 2026-04-16 |
| CVE-2026-33031 json | Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.4, a user who was disabled by an administrato... | Not Provided | 2026-04-20 | 2026-04-22 |
| CVE-2026-33030 json | Nginx UI is a web user interface for the Nginx web server. In versions 2.3.3 and prior, Nginx-UI contains an Insecure Direct ... | Not Provided | 2026-03-30 | 2026-04-01 |
| CVE-2026-33029 json | Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.4, an input validation vulnerability in the l... | Not Provided | 2026-03-30 | 2026-04-02 |
| CVE-2026-33028 json | Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.4, the nginx-ui application is vulnerable to ... | Not Provided | 2026-03-30 | 2026-04-01 |
| CVE-2026-33027 json | Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.4, the nginx-ui configuration improperly hand... | Not Provided | 2026-03-30 | 2026-04-01 |
| CVE-2026-33026 json | Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.4, the nginx-ui backup restore mechanism allo... | Not Provided | 2026-03-30 | 2026-04-01 |
| CVE-2024-22198 json | 8.8 - HIGH | 2024-01-11 | 2024-01-18 | |
| CVE-2024-22197 json | 8.8 - HIGH | 2024-01-11 | 2024-01-18 | |
| CVE-2024-22196 json | 6.5 - MEDIUM | 2024-01-11 | 2024-01-18 |