SCA: security update for github.com/0xJacky/Nginx-UI (GHSA-g9w5-qffc-6762)

critical Tenable Cloud Security Plugin ID 438415

Description

There are packages installed that are affected by a vulnerability referenced in the following CVE:

- Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.3, the /api/backup
endpoint is accessible without authentication and discloses the encryption keys required to decrypt the
backup in the X-Backup-Security response header. This allows an unauthenticated attacker to download a
full system backup containing sensitive data (user credentials, session tokens, SSL private keys, Nginx
configurations) and decrypt it immediately. This issue has been patched in version 2.3.3. (CVE-2026-27944)

See Also

https://github.com/advisories/GHSA-g9w5-qffc-6762

Plugin Details

Severity: Critical

ID: 438415

Version: Revision 1.12

Type: Local

Family: SCA Checks

Published: 3/5/2026

Updated: 7/2/2026

Supported Sensors: Tenable Cloud Security, Tenable Self-Hosted Container Security

Risk Information

VPR

Risk Factor: High

Score: 7.9

Percentile: 99.36

Vendor

Vendor Severity: Critical

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2026-27944

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Temporal Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 3/5/2026

Vulnerability Publication Date: 3/5/2026

Reference Information

CVE: CVE-2026-27944