Nginx Gateway Fabric

Source repositories

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2026-32682	Nginxinc Nginx Gateway Fabric		0.00	—	—		Jun 17, 2026	When NGINX Gateway Fabric is configured using GRPCRoutes, an authenticated, remote attacker with permission to create or modify GRPCRoute resources can cause the NGINX Gateway Fabric control plane to terminate by sending undisclosed GRPCRoute configurations containing backendRef…
CVE-2026-50107	Nginxinc Nginx Gateway Fabric		0.00	—	—		Jun 17, 2026	When NGINX Plus or NGINX Open Source is configured as the data plane for NGINX Gateway Fabric, an injection vulnerability exists in the NGINX configuration generator component of NGINX Gateway Fabric. User-supplied string values from the NginxProxy Custom Resource Definition…

CVE-2026-32682Jun 17, 2026
Nginxinc
Nginx Gateway Fabric
risk 0.00cvss —epss —
When NGINX Gateway Fabric is configured using GRPCRoutes, an authenticated, remote attacker with permission to create or modify GRPCRoute resources can cause the NGINX Gateway Fabric control plane to terminate by sending undisclosed GRPCRoute configurations containing backendRef…
CVE-2026-50107Jun 17, 2026
Nginxinc
Nginx Gateway Fabric
risk 0.00cvss —epss —
When NGINX Plus or NGINX Open Source is configured as the data plane for NGINX Gateway Fabric, an injection vulnerability exists in the NGINX configuration generator component of NGINX Gateway Fabric. User-supplied string values from the NginxProxy Custom Resource Definition…