Is your API management solution secure when vulnerabilities are found? The NGINX team builds patches into the NGINX Controller API Management Module as soon as they're available. Third-party solutions built on NGINX can leave you vulnerable while vendors test and port patches.
The Imperva HTTP/2 Vulnerability Report and NGINX
Security firm Imperva found four potential security vulnerabilities in HTTP/2, and one affects older versions of NGINX. Here are mitigation suggestions.
Using NGINX and NGINX Plus to Protect Against CVE-2015-1635
Learn how to use NGINX and NGINX Plus to protect your Windows servers against CVE-2015-1635
Protecting NGINX and NGINX Plus from the POODLE Attack Against SSLv3 (CVE-2014-3566)
Learn how to protect NGINX and NGINX Plus from the recent NGINX POODLE attack (CVE-2014-3566) against SSLv3
NGINX and the CVE-2014-6271 Bash Advisory
Get details about NGINX and the CVE-2014-6271 Bash advisory. Find out if you are running on an affected host system, and upgrade bash if necessary