Critical 9.8 Unfixed
2016-02-15≤ 0.7.59
nginx: use-after-free during CNAME response processing in resolver
nginx 0.7
Critical 9.8 Unfixed
2021-06-06≤ 0.7.59
nginx: buffer overflow in ngx_gmtime() triggered by 5 digit years
High 8.2 Unfixed
2026-03-24≤ 0.7.59
NGINX ngx_http_dav_module vulnerability
High 7.7 Unfixed
2021-06-01≤ 0.7.59
nginx: Off-by-one in ngx_resolver_copy() when labels are followed by a pointer to a root domain name
High 7.5 Unfixed
2026-03-24≤ 0.7.59
NGINX ngx_mail_auth_http_module vulnerability
High 7.5
2009-09-15< 0.7.62
nginx: ngx_http_parse_complex_uri() buffer underflow vulnerability (VU#180065)
High 7.5 Unfixed
2016-02-15≤ 0.7.59
nginx: invalid pointer dereference in resolver
High 7.5 Unfixed
2017-07-13≤ 0.7.59
nginx: Integer overflow in nginx range filter module leading to memory disclosure
High 7.4 Unfixed
2022-03-23≤ 0.7.59
ALPACA: Application Layer Protocol Confusion - Analyzing and Mitigating Cracks in TLS Authentication
Medium 6.8
2010-01-13= 0.7.64
nginx: Absent sanitation of escape sequences in web server log
Medium 6.8 Unfixed
2011-12-08≤ 0.7.59
Medium 5.8 Unfixed
2009-11-09≤ 0.7.59
TLS: MITM attacks via session renegotiation
Medium 5.3 Unfixed
2016-02-15≤ 0.7.59
nginx: Insufficient limits of CNAME resolution in resolver
Medium 5.3 Unfixed
2020-01-09≤ 0.7.59
nginx: HTTP request smuggling in configurations with URL redirect used as error_page
Medium 5.0
2010-06-14≥ 0.7.52 and < 0.7.66
Medium 5.0
2010-06-14≥ 0.7.52 and < 0.7.67
Medium 5.0 Unfixed
2012-04-17≤ 0.7.59
Medium 5.0 Unfixed
2012-07-26≥ 0.7.52 and ≤ 0.7.59
Medium 5.0
2009-11-24< 0.7.62
Medium 4.9
2009-11-24< 0.7.63
Medium 4.8
2019-11-19≥ 0.7.61 and ≤ 0.7.66
Medium 4.3 Unfixed
2010-12-06≤ 0.7.59
openssl: NETSCAPE_REUSE_CIPHER_CHANGE_BUG ciphersuite downgrade attack
Medium 4.3 Unfixed
2014-12-08≤ 0.7.59
nginx: virtual host confusion
Low 3.7 Unfixed
2026-03-24≤ 0.7.59
NGINX ngx_mail_proxy_module vulnerability
Low 3.7 Unfixed
2025-08-13≤ 0.7.59
NGINX ngx_mail_smtp_module vulnerability