CVE-2026-27944CRITICAL 9.8EPSS p97.4%

CVE-2026-27944CVE-2026-27944

Description

Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.3, the /api/backup endpoint is accessible without authentication and discloses the encryption keys required to decrypt the backup in the X-Backup-Security response header. This allows an unauthenticated attacker to download a full system backup containing sensitive data (user credentials, session tokens, SSL private keys, Nginx configurations) and decrypt it immediately. This issue has been patched in version 2.3.3.

Scoring

CVSS 3.19.8 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS22.16% probability of exploitation · percentile 97.4% · 2026-06-18T12:00:27Z
Published2026-03-05
Last modified2026-03-10

Underlying weaknesses· 2

CWE-306CWE-311

References

  1. https://github.com/0xJacky/nginx-ui/security/advisories/GHSA-g9w5-qffc-6762

2

TypeTargetConfidenceTier
WeaknessMissing Authentication for Critical Functioncwe-3060%live
WeaknessMissing Encryption of Sensitive Datacwe-3110%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-33026
CVE
CVE-2026-42238
CVE
CVE-2026-42221
CVE
CVE-2026-33031
CVE
CVE-2026-42222
CVE
CVE-2026-33030
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.