Vulnerability intelligence
CVE-2026-33032
Official description is being retrieved from NVD — refresh shortly.
CVSS Score
9.8
Critical
EPSS — Exploit Probability
0.0%
Riskier than 0% of all CVEs
Exploitation
Not in CISA KEV
No federal exploitation record
Remediation
Patch available
Vendor fix published
5 articles across 5 outlets · first covered Apr 15, 2026 · latest Apr 15, 2026
Coverage timeline
-
nginx UI flaw lets attackers hijack NGINX via CVE-2026-33032www.darkreading.com · Apr 15, 2026
-
CVE-2026-33032: severe nginx-ui bug grants unauthenticated server accesssecurityaffairs.com · Apr 15, 2026
-
Nginx UI flaw CVE-2026-33032 exploited, allows server takeoverwww.securityweek.com · Apr 15, 2026
-
nginx UI flaw CVE-2026-33032 exploited, allowing server takeoverthehackernews.com · Apr 15, 2026
-
nginx-ui auth bypass CVE-2026-33032 lets attackers control serverswww.infosecurity-magazine.com · Apr 15, 2026