NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1 and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module ngx_http_mp4_module that might allow a local attacker to cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted audio or video file. The issue affects only NGINX products that are built with the module ngx_http_mp4_module, when the mp4 directive is used in the configuration file. Further, the attack is possible only if an attacker can trigger processing of a specially crafted audio or video file with the module ngx_http_mp4_module.

The version of nginx installed on the remote host is prior to 1.22.1-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2NGINX1-2023-001 advisory.

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to corrupt NGINX worker memory, resulting in its     termination or potential other impact using a specially crafted audio or video file. The issue affects     only NGINX products that are built with the ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41741)

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to cause a worker process crash, or might result in     worker process memory disclosure by using a specially crafted audio or video file. The issue affects only     NGINX products that are built with the module ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41742)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-090 advisory.

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to corrupt NGINX worker memory, resulting in its     termination or potential other impact using a specially crafted audio or video file. The issue affects     only NGINX products that are built with the ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41741)

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to cause a worker process crash, or might result in     worker process memory disclosure by using a specially crafted audio or video file. The issue affects only     NGINX products that are built with the module ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41742)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-099 advisory.

  - ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing     different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A     MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one     subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-     protocol attacks may be possible where the behavior of one protocol service may compromise the other at     the application layer. (CVE-2021-3618)

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to corrupt NGINX worker memory, resulting in its     termination or potential other impact using a specially crafted audio or video file. The issue affects     only NGINX products that are built with the ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41741)

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to cause a worker process crash, or might result in     worker process memory disclosure by using a specially crafted audio or video file. The issue affects only     NGINX products that are built with the module ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41742)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLES15 / SLES_SAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0293-1 advisory.

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to corrupt NGINX worker memory, resulting in its     termination or potential other impact using a specially crafted audio or video file. The issue affects     only NGINX products that are built with the ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41741)

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to cause a worker process crash, or might result in     worker process memory disclosure by using a specially crafted audio or video file. The issue affects only     NGINX products that are built with the module ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41742)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

According to the versions of the nginx packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities :

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to corrupt NGINX worker memory, resulting in its     termination or potential other impact using a specially crafted audio or video file. The issue affects     only NGINX products that are built with the ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41741)

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to cause a worker process crash, or might result in     worker process memory disclosure by using a specially crafted audio or video file. The issue affects only     NGINX products that are built with the module ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41742)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

The remote SUSE Linux SLES15 / SLES_SAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0212-1 advisory.

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to corrupt NGINX worker memory, resulting in its     termination or potential other impact using a specially crafted audio or video file. The issue affects     only NGINX products that are built with the ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41741)

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to cause a worker process crash, or might result in     worker process memory disclosure by using a specially crafted audio or video file. The issue affects only     NGINX products that are built with the module ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41742)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLES15 / SLES_SAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0210-1 advisory.

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to corrupt NGINX worker memory, resulting in its     termination or potential other impact using a specially crafted audio or video file. The issue affects     only NGINX products that are built with the ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41741)

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to cause a worker process crash, or might result in     worker process memory disclosure by using a specially crafted audio or video file. The issue affects only     NGINX products that are built with the module ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41742)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLES15 / SLES_SAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0205-1 advisory.

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to corrupt NGINX worker memory, resulting in its     termination or potential other impact using a specially crafted audio or video file. The issue affects     only NGINX products that are built with the ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41741)

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to cause a worker process crash, or might result in     worker process memory disclosure by using a specially crafted audio or video file. The issue affects only     NGINX products that are built with the module ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41742)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2023-270 advisory.

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to corrupt NGINX worker memory, resulting in its     termination or potential other impact using a specially crafted audio or video file. The issue affects     only NGINX products that are built with the ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41741)

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to cause a worker process crash, or might result in     worker process memory disclosure by using a specially crafted audio or video file. The issue affects only     NGINX products that are built with the module ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41742)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of nginx installed on the remote host is prior to 1.18.0-1.44. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2023-1665 advisory.

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to corrupt NGINX worker memory, resulting in its     termination or potential other impact using a specially crafted audio or video file. The issue affects     only NGINX products that are built with the ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41741)

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to cause a worker process crash, or might result in     worker process memory disclosure by using a specially crafted audio or video file. The issue affects only     NGINX products that are built with the module ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41742)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Fedora 35 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-97de53f202 advisory.

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to corrupt NGINX worker memory, resulting in its     termination or potential other impact using a specially crafted audio or video file. The issue affects     only NGINX products that are built with the ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41741)

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to cause a worker process crash, or might result in     worker process memory disclosure by using a specially crafted audio or video file. The issue affects only     NGINX products that are built with the module ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41742)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-b0f5bc2175 advisory.

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to corrupt NGINX worker memory, resulting in its     termination or potential other impact using a specially crafted audio or video file. The issue affects     only NGINX products that are built with the ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41741)

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to cause a worker process crash, or might result in     worker process memory disclosure by using a specially crafted audio or video file. The issue affects only     NGINX products that are built with the module ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41742)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3203 advisory.

  - ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing     different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A     MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one     subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-     protocol attacks may be possible where the behavior of one protocol service may compromise the other at     the application layer. (CVE-2021-3618)

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to corrupt NGINX worker memory, resulting in its     termination or potential other impact using a specially crafted audio or video file. The issue affects     only NGINX products that are built with the ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41741)

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to cause a worker process crash, or might result in     worker process memory disclosure by using a specially crafted audio or video file. The issue affects only     NGINX products that are built with the module ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41742)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5281 advisory.

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to corrupt NGINX worker memory, resulting in its     termination or potential other impact using a specially crafted audio or video file. The issue affects     only NGINX products that are built with the ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41741)

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to cause a worker process crash, or might result in     worker process memory disclosure by using a specially crafted audio or video file. The issue affects only     NGINX products that are built with the module ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41742)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS / 22.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5722-1 advisory.

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to corrupt NGINX worker memory, resulting in its     termination or potential other impact using a specially crafted audio or video file. The issue affects     only NGINX products that are built with the ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41741)

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to cause a worker process crash, or might result in     worker process memory disclosure by using a specially crafted audio or video file. The issue affects only     NGINX products that are built with the module ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41742)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

According to its Server response header, the installed version of nginx is 1.0.x prior to 1.22.1 or 1.1.x prior to 1.23.2. It is, therefore, affected by a memory disclosure in the ngx_http_mp4_module that allows an attacker to cause a worker process crash or worker process memory disclosure. The issues only affect nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the mp4 directive is used in the configuration file.
Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 676d4f16-4fb3-11ed-a374-8c164567ca3c advisory.

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to corrupt NGINX worker memory, resulting in its     termination or potential other impact using a specially crafted audio or video file. The issue affects     only NGINX products that are built with the ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41741)

  - NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1     and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module     ngx_http_mp4_module that might allow a local attacker to cause a worker process crash, or might result in     worker process memory disclosure by using a specially crafted audio or video file. The issue affects only     NGINX products that are built with the module ngx_http_mp4_module, when the mp4 directive is used in the     configuration file. Further, the attack is possible only if an attacker can trigger processing of a     specially crafted audio or video file with the module ngx_http_mp4_module. (CVE-2022-41742)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

According to its Server response header, the installed version of nginx is prior to 1.22.1 or 1.23.x prior to 1.23.2. It is, therefore, affected by two security issues which might allow an attacker to cause a worker process crash or worker process memory disclosure by using a specially crafted mp4 file.

Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
182011	Amazon Linux 2 : nginx (ALASNGINX1-2023-001)	Nessus	Amazon Linux Local Security Checks	high
173159	Amazon Linux 2023 : nginx, nginx-all-modules, nginx-core (ALAS2023-2023-090)	Nessus	Amazon Linux Local Security Checks	high
173141	Amazon Linux 2023 : nginx, nginx-all-modules, nginx-core (ALAS2023-2023-099)	Nessus	Amazon Linux Local Security Checks	high
171200	SUSE SLES15 Security Update : nginx (SUSE-SU-2023:0293-1)	Nessus	SuSE Local Security Checks	high
171199	EulerOS 2.0 SP8 : nginx (EulerOS-SA-2023-1330)	Nessus	Huawei Local Security Checks	high
170899	SUSE SLES15 / openSUSE 15 Security Update : nginx (SUSE-SU-2023:0212-1)	Nessus	SuSE Local Security Checks	high
170896	SUSE SLES15 Security Update : nginx (SUSE-SU-2023:0210-1)	Nessus	SuSE Local Security Checks	high
170751	SUSE SLES15 / openSUSE 15 Security Update : nginx (SUSE-SU-2023:0205-1)	Nessus	SuSE Local Security Checks	high
170622	Amazon Linux 2022 : (ALAS2022-2023-270)	Nessus	Amazon Linux Local Security Checks	high
170524	Amazon Linux AMI : nginx (ALAS-2023-1665)	Nessus	Amazon Linux Local Security Checks	high
169068	Fedora 35 : 1:nginx (2022-97de53f202)	Nessus	Fedora Local Security Checks	high
169021	Fedora 36 : 1:nginx (2022-b0f5bc2175)	Nessus	Fedora Local Security Checks	high
168171	Debian DLA-3203-1 : nginx - LTS security update	Nessus	Debian Local Security Checks	high
167747	Debian DSA-5281-1 : nginx - security update	Nessus	Debian Local Security Checks	high
167542	Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS : nginx vulnerabilities (USN-5722-1)	Nessus	Ubuntu Local Security Checks	high
166545	nginx 1.1.x < 1.23.2 / 1.0.x < 1.22.1 Memory Disclosure	Nessus	Web Servers	high
166298	FreeBSD : nginx -- Two vulnerabilities (676d4f16-4fb3-11ed-a374-8c164567ca3c)	Nessus	FreeBSD Local Security Checks	high
113421	Nginx 1.23.x < 1.23.2 Multiple Vulnerabilities	Web App Scanning	Component Vulnerability	high
113420	Nginx < 1.22.1 Multiple Vulnerabilities	Web App Scanning	Component Vulnerability	high

Detections

Analytics

CVE-2022-41742

high

Tenable Plugins

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high