Nginx UI Product Security Update Advisory (CVE-2026-33032)
Overview. CVE-2026-33032 is an authentication bypass vulnerability discovered in the Nginx UI. the vulnerability allows access to the MCP endpoint with an unauthenticated request, creating conditions that could allow remote control of Nginx configuration or behavior. Impact and risk. affected products are Nginx UI version 2.3.5 and earlier. through authentication
Nginx UI Security Update Advisory (CVE-2026-27944)
Overview Nginx UI has released a security update to address a vulnerability in our its products. Users of affected products are advised to update to the latest version. Affected Products CVE-2026-27944 Nginx UI version: less than 2.3.2 Resolved Vulnerabilities Unauthenticated backup download
