{ "threat_severity" : "Moderate", "public_date" : "2026-02-04T15:02:06Z", "bugzilla" : { "description" : "nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections", "id" : "2436738", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2436738" }, "cvss3" : { "cvss3_base_score" : "5.9", "cvss3_scoring_vector" : "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", "status" : "verified" }, "cwe" : "CWE-349", "details" : [ "A vulnerability exists in NGINX OSS and NGINX Plus when configured to proxy to upstream Transport Layer Security (TLS) servers. An attacker with a man-in-the-middle (MITM) position on the upstream server side—along with conditions beyond the attacker's control—may be able to inject plain text data into the response from an upstream proxied server.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.", "A flaw was found in NGINX. When NGINX is configured to proxy to upstream Transport Layer Security (TLS) servers, An attacker with a man-in-the-middle (MITM) position on the upstream server side—along with conditions beyond the attacker's control—may be able to inject plain text data into the response from an upstream proxied server." ], "affected_release" : [ { "product_name" : "Red Hat Enterprise Linux 10", "release_date" : "2026-03-17T00:00:00Z", "advisory" : "RHSA-2026:4705", "cpe" : "cpe:/o:redhat:enterprise_linux:10.1", "package" : "nginx-2:1.26.3-2.el10_1" }, { "product_name" : "Red Hat Enterprise Linux 10.0 Extended Update Support", "release_date" : "2026-04-01T00:00:00Z", "advisory" : "RHSA-2026:6311", "cpe" : "cpe:/o:redhat:enterprise_linux_eus:10.0", "package" : "nginx-2:1.26.3-1.el10_0.3" }, { "product_name" : "Red Hat Enterprise Linux 8", "release_date" : "2026-03-24T00:00:00Z", "advisory" : "RHSA-2026:5581", "cpe" : "cpe:/a:redhat:enterprise_linux:8", "package" : "nginx:1.24-8100020260223105706.489197e6" }, { "product_name" : "Red Hat Enterprise Linux 9", "release_date" : "2026-03-03T00:00:00Z", "advisory" : "RHSA-2026:3638", "cpe" : "cpe:/a:redhat:enterprise_linux:9", "package" : "nginx:1.24-9070020260219154412.9" }, { "product_name" : "Red Hat Enterprise Linux 9", "release_date" : "2026-03-10T00:00:00Z", "advisory" : "RHSA-2026:4235", "cpe" : "cpe:/a:redhat:enterprise_linux:9", "package" : "nginx:1.26-9070020260219144748.9" }, { "product_name" : "Red Hat Enterprise Linux 9", "release_date" : "2026-03-24T00:00:00Z", "advisory" : "RHSA-2026:5599", "cpe" : "cpe:/a:redhat:enterprise_linux:9", "package" : "nginx-2:1.20.1-24.el9_7.1" }, { "product_name" : "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions", "release_date" : "2026-04-01T00:00:00Z", "advisory" : "RHSA-2026:6408", "cpe" : "cpe:/a:redhat:rhel_e4s:9.0", "package" : "nginx-1:1.20.1-10.el9_0.2" }, { "product_name" : "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions", "release_date" : "2026-03-31T00:00:00Z", "advisory" : "RHSA-2026:6235", "cpe" : "cpe:/a:redhat:rhel_e4s:9.2", "package" : "nginx-1:1.20.1-14.el9_2.4" }, { "product_name" : "Red Hat Enterprise Linux 9.4 Extended Update Support", "release_date" : "2026-03-31T00:00:00Z", "advisory" : "RHSA-2026:6234", "cpe" : "cpe:/a:redhat:rhel_eus:9.4", "package" : "nginx-1:1.20.1-16.el9_4.4" }, { "product_name" : "Red Hat Enterprise Linux 9.4 Extended Update Support", "release_date" : "2026-04-01T00:00:00Z", "advisory" : "RHSA-2026:6407", "cpe" : "cpe:/a:redhat:rhel_eus:9.4", "package" : "nginx:1.24-9040020260331102155.9" }, { "product_name" : "Red Hat Enterprise Linux 9.6 Extended Update Support", "release_date" : "2026-03-30T00:00:00Z", "advisory" : "RHSA-2026:6182", "cpe" : "cpe:/a:redhat:rhel_eus:9.6", "package" : "nginx-2:1.20.1-22.el9_6.4" }, { "product_name" : "Red Hat Enterprise Linux 9.6 Extended Update Support", "release_date" : "2026-03-31T00:00:00Z", "advisory" : "RHSA-2026:6302", "cpe" : "cpe:/a:redhat:rhel_eus:9.6", "package" : "nginx:1.24-9060020260327134414.9" }, { "product_name" : "Red Hat Enterprise Linux 9.6 Extended Update Support", "release_date" : "2026-04-02T00:00:00Z", "advisory" : "RHSA-2026:6427", "cpe" : "cpe:/a:redhat:rhel_eus:9.6", "package" : "nginx:1.26-9060020260331094920.9" }, { "product_name" : "Red Hat Discovery 2", "release_date" : "2026-03-12T00:00:00Z", "advisory" : "RHSA-2026:4501", "cpe" : "cpe:/a:redhat:discovery:2::el9", "package" : "discovery/discovery-ui-rhel9:1773273070" }, { "product_name" : "Red Hat Hardened Images", "release_date" : "2026-04-15T00:00:00Z", "advisory" : "RHSA-2026:8346", "cpe" : "cpe:/a:redhat:hummingbird:1", "package" : "nginx-main-1.30.0-1.hum1" }, { "product_name" : "Red Hat Update Infrastructure 5", "release_date" : "2026-04-23T00:00:00Z", "advisory" : "RHSA-2026:10065", "cpe" : "cpe:/a:redhat:rhui:5::el9", "package" : "rhui5/rhua-rhel9:1776868842" }, { "product_name" : "Red Hat Update Infrastructure 5", "release_date" : "2026-03-18T00:00:00Z", "advisory" : "RHSA-2026:4943", "cpe" : "cpe:/a:redhat:rhui:5::el9", "package" : "rhui5/cds-rhel9:1773670073" } ], "package_state" : [ { "product_name" : "Red Hat Lightspeed proxy 1", "fix_state" : "Affected", "package_name" : "insights-proxy/insights-proxy-container-rhel9", "cpe" : "cpe:/a:redhat:insights_proxy:1" } ], "references" : [ "https://www.cve.org/CVERecord?id=CVE-2026-1642\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-1642\nhttps://my.f5.com/manage/s/article/K000159824" ], "name" : "CVE-2026-1642", "mitigation" : { "value" : "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", "lang" : "en:us" }, "csaw" : false }