%20--%3e%3cdefs%3e%3cstyle%3e%20.st0%20{%20fill:%20%23061b40;%20}%20.st1%20{%20fill:%20%23306af1;%20}%20.st2%20{%20fill:%20%235ce5cf;%20}%20%3c/style%3e%3c/defs%3e%3cg%3e%3cpath%20class='st0'%20d='M55,10.5h9v3h-9v9h12V7.5h-12v3ZM64,19.5h-6v-3h6v3Z'/%3e%3cpolygon%20class='st0'%20points='69%2016.5%2078%2016.5%2078%2019.5%2069%2019.5%2069%2022.5%2081%2022.5%2081%2013.5%2072%2013.5%2072%2010.5%2081%2010.5%2081%207.5%2069%207.5%2069%2016.5'/%3e%3cpolygon%20class='st0'%20points='95%2010.5%2095%207.5%2083%207.5%2083%2022.5%2095%2022.5%2095%2019.5%2086%2019.5%2086%2016.5%2095%2016.5%2095%2013.5%2086%2013.5%2086%2010.5%2095%2010.5'/%3e%3cpath%20class='st0'%20d='M40,1.5v21h11.6l1.4-1.4v-7.6h0c0,0-1.4-1.5-1.4-1.5l1.4-1.4V2.9l-1.4-1.4h-11.6ZM50,19.5h-7v-6h7v6ZM50,10.5h-7v-6h7v6Z'/%3e%3c/g%3e%3cpath%20class='st1'%20d='M23.1,24L14.7,4.8l-4.9,11.2h3.8l-1.8,4H3.3L12.1,0H2C.9,0,0,.9,0,2v20c0,1.1.9,2,2,2h21.1Z'/%3e%3cpath%20class='st2'%20d='M34,0h-16.8l10.6,24h6.2c1.1,0,2-.9,2-2V2C36,.9,35.1,0,34,0ZM32.5,20h-4V4h4v16Z'/%3e%3c/svg%3e)
Artificial intelligence has made a milestone breakthrough in the field of cybersecurity. The AI security analysis system developed by startup company depthfirst independently discovered a critical NGINX vulnerability that had been hidden for 18 years
Core Information about the Vulnerability
Duration of Exposure: It remained undetected since its introduction in 2008, spanning 18 years.
Affected Versions: NGINX versions from 0.6.27 to 1.30.0.
Vulnerability Principle: It exists in the
rewritemodule, caused by a defect in the two-phase processing mechanism of the script engine, leading to a heap buffer overflow.Patched Version: The official has released a patch. It is recommended to upgrade to the open-source version 1.31.0 or 1.30.1, as well as the corresponding commercial version NGINX Plus.
The "Downward Strike" of AI Security Analysis
This vulnerability was discovered by the San Francisco AI laboratory depthfirst. The performance of this system has attracted great attention in the industry:
High Efficiency: In just 6 hours of autonomous scanning, the system identified five security issues, including CVE-2026-42945 (four of which have been confirmed by the official as remote memory corruption vulnerabilities).
Deep Understanding: Unlike traditional tools, this AI can understand complex business logic and cross-module interactions, discovering vulnerabilities that even top AI security tools had missed.
Data shows that approximately 19 million exposed NGINX instances are affected by this vulnerability. Among them, the United States (about 53.4 million affected instances, including historical cumulative data) and China (about 25.4 million) are the countries with the highest exposure levels. Since the proof-of-concept (PoC) code for this vulnerability has been publicly released, the security risk is extremely high. All enterprises and developers using NGINX are advised to immediately check their configuration files (especially scenarios where both rewrite and set directives are used) and complete the version update as soon as possible.