nginxui security advisories

1 threat alert tracking vulnerabilities and security advisories that affect nginxui products.

Vulnios monitors nginxui CVE feeds, vendor advisories, CISA KEV listings, and exploit-prediction data continuously. Each alert below is enriched with severity, exploitation status, affected products, and a remediation path. Use this page to scan recent nginxui security news in one place, or click into an individual alert for full detail.

Critical Vulnerability: CVE-2026-42238 — nginxui — nginx_ui
Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.8, nginx-ui exposes a backup restore endpoint (POST /api/restore) that is completely unauthenticated during the first 10
criticalCVE-2026-42238

Track nginxui exposure across your environment

Vulnios automatically cross-references your asset inventory against new nginxui CVEs and surfaces only what affects you. No more sifting manually — actionable findings only.

Start a free scan

nginxui security advisories

Critical Vulnerability: CVE-2026-42238 — nginxui — nginx_ui

Track nginxui exposure across your environment