NGINX Vulnerability CVE-2026-42945 Actively Exploited in the Wild

A newly disclosed vulnerability in NGINX Plus and NGINX Open, tracked as CVE-2026-42945 with a CVSS score of 9.2, has been actively exploited in the wild following its public disclosure. The flaw is a heap buffer overflow in the ngx_http_rewrite_module, affecting NGINX versions 0.6.27 through 1.30.0. Exploitation of the vulnerability has been reported by VulnCheck, leading to worker crashes and potential remote code execution (RCE). The issue was highlighted by the AI-native security company DepthFirst, though no specific exploitation timeline or attack origins were detailed. No patches or mitigations were explicitly mentioned in the available content.