CVE-2026-33026

UNKNOWN NVD

CVSS Score 0

Severity UNKNOWN

Published Mar 30, 2026

Vendor unknown

Description

Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.4, the nginx-ui backup restore mechanism allows attackers to tamper with encrypted backup archives and inject malicious configuration during restoration. This issue has been patched in version 2.3.4.

References

https://github.com/0xJacky/nginx-ui/releases/tag/v2.3.4
https://github.com/0xJacky/nginx-ui/security/advisories/GHSA-fhh2-gg7w-gwpq