Threat Digest

A stylized representation of network code with a crack running through it, symbolizing a security vulnerability.

18-Year-Old NGINX Flaw: Unauthenticated RCE Exposed

Eighteen years. That's how long a critical NGINX vulnerability sat dormant, waiting to be found. Discovered by depthfirst, NGINX Rift (CVE-2026-42945) allows unauthenticated attackers to execute code remotely.

6 min read 4 hours ago

#nginx-rift

18-Year-Old NGINX Flaw: Unauthenticated RCE Exposed