> TritonInfoSec News
Home / Jun 19, 2026 / Story
0
#4 BleepingComputer general June 18, 2026 at 11:33 UTC

F5 issues out-of-band patches for critical NGINX vulnerabilities

By Sergiu Gatlan

AI Summary

F5 released out-of-band patches for two critical vulnerabilities in NGINX Open Source, including CVE-2026-42530 (CVSS v4: 9.2), a use-after-free flaw in the ngx_http_v3_module exploitable by remote unauthenticated attackers for arbitrary code execution. Given NGINX's ubiquity as a web server and reverse proxy, security teams should prioritize patching immediately.

Read full article → https://www.bleepingcomputer.com/news/security/f5-…

Relevance score: 85.0/100

# More from June 19

  1. 1
    Police cleans nearly 15,000 SocGholish-infected sites tied to Evil Corp BleepingComputer
  2. 2
    Accenture to Acquire Majority Stake in Dragos, All of runZero, NetRise in $4.1 Billion OT Cybersecurity Push SecurityWeek
  3. 3
    ‘Popa’ Botnet Linked to Publicly-Traded Israeli Firm Krebs on Security
  4. 5
    Splunk Enterprise Vulnerability Exploited in Attacks Days After Disclosure SecurityWeek
  5. 6
    Killing me gently: Inside Gentlemen’s EDR killer framework WeLiveSecurity (ESET)
  6. 7
    DragonForce Hackers Abuse Microsoft Teams Relays to Hide Backdoor.Turn C2 Traffic The Hacker News
  7. 8
    Klue OAuth breach linked to 'Icarus' Salesforce data theft attacks BleepingComputer
  8. 9
    Attackers hit pair of critical Fortinet vulnerabilities the vendor disclosed in April CyberScoop
  9. 10
    INC Ransomware Emerges as Major RaaS Threat in 2026 with 830+ Victims Since 2023 The Hacker News