Nginx-UI vulnerable to authenticated RCE through injecting into the application config via CRLF
Package
Affected versions
< 1.9.10-0.20240126104956-d70e37c8575e
Patched versions
1.9.10-0.20240126104956-d70e37c8575e
Description
Published by the National Vulnerability Database
Jan 29, 2024
Published to the GitHub Advisory Database
Jan 29, 2024
Reviewed
Jan 29, 2024
Last updated
Jul 6, 2026
Summary
Fix bypass to the following bugs
Allowing to inject directly in the
app.inivia CRLF to change the value oftest_config_cmdandstart_cmdresulting in an Authenticated RCEImpact
Authenticated Remote execution on the host
References