NGINX Unit before 1.7.1 might allow an attacker to cause a heap-based buffer overflow in the router process with a specially crafted request. This may result in a denial of service (router process crash) or possibly have unspecified other impact.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Tue, 12 Aug 2025 17:30:00 +0000

Type Values Removed Values Added
First Time appeared F5
F5 nginx unit
CPEs cpe:2.3:a:nginx:unit:*:*:*:*:*:*:*:* cpe:2.3:a:f5:nginx unit:*:*:*:*:*:*:*:*
Vendors & Products Nginx
Nginx unit
F5
F5 nginx unit

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-04T20:46:46.265Z

Reserved: 2019-02-05T00:00:00

Link: CVE-2019-7401

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-02-08T03:29:00.247

Modified: 2025-08-12T17:24:44.367

Link: CVE-2019-7401

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.