VYPR
Unrated severityNVD Advisory· Published Apr 17, 2012· Updated Jun 16, 2026

CVE-2012-1180

CVE-2012-1180

Description

Use-after-free vulnerability in nginx before 1.0.14 and 1.1.x before 1.1.17 allows remote HTTP servers to obtain sensitive information from process memory via a crafted backend response, in conjunction with a client request.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:15:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:o:fedoraproject:fedora:15:*:*:*:*:*:*:*
    • cpe:2.3:o:fedoraproject:fedora:16:*:*:*:*:*:*:*
    • cpe:2.3:o:fedoraproject:fedora:17:*:*:*:*:*:*:*
  • Nginx/Nginxllm-fuzzy
    Range: before 1.0.14; 1.1.x before 1.1.17

Patches

Vulnerability mechanics

References

21

News mentions

0

No linked articles in our index yet.