CVE-2025-23419

Medium CVSS: 5.3

When multiple server blocks are configured to share the same IP address and port, an attacker can use session resumption to bypass client certificate authentication requirements on these servers. This vulnerability arises when TLS Session Tickets https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_session_ticket_key are used and/or the SSL session cache https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_session_cache are used in the default server and the default server is performing client certificate authentication.

Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Vendor

Product

Nginx

CWE

CWE-863

Yayın Tarihi

2025-02-05 18:15:33

Güncelleme

2026-01-27 13:30:41

Source Identifier

f5sirt@f5.com

KEV Date Added

Kategoriler

CWE-863 Nginx MEDIUM F5 2025

Referanslar

https://my.f5.com/manage/s/article/K000149173 http://www.openwall.com/lists/oss-security/2025/02/05/8 https://lists.debian.org/debian-lts-announce/2025/03/msg00017.html

Benzer Kayıtlar

High

CVE-2026-32647

NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_mp4_module module, which might allow an attacker t…

High

CVE-2026-27654

NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_dav_module module that might allow an attacker to…

High

CVE-2026-27784

The 32-bit implementation of NGINX Open Source has a vulnerability in the ngx_http_mp4_module module, which might allow…

Medium

CVE-2026-28753

NGINX Plus and NGINX Open Source have a vulnerability in the ngx_mail_smtp_module module due to the improper handling of…

Medium

CVE-2026-28755

NGINX Plus and NGINX Open Source have a vulnerability in the ngx_stream_ssl_module module due to the improper handling o…

High

CVE-2026-27651

When the ngx_mail_auth_http_module module is enabled on NGINX Plus or NGINX Open Source, undisclosed requests can cause…