CVE-2022-41741

HIGH

NGINX <1.23.2-1.22.1 - Memory Corruption

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2022-41741. PoCs published by moften, dumbbutt0.

AI-analyzed exploit summary This repository contains a Python-based scanner for detecting Nginx versions and checking for vulnerabilities, including CVE-2022-41741 and CVE-2022-41742. It performs fingerprinting, version detection, and vulnerability analysis but does not include exploit code.

Description

NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1 and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module ngx_http_mp4_module that might allow a local attacker to corrupt NGINX worker memory, resulting in its termination or potential other impact using a specially crafted audio or video file. The issue affects only NGINX products that are built with the ngx_http_mp4_module, when the mp4 directive is used in the configuration file. Further, the attack is possible only if an attacker can trigger processing of a specially crafted audio or video file with the module ngx_http_mp4_module.

Exploits (2)

nomisec SCANNER 1 stars
by moften · poc
https://github.com/moften/CVE-2022-41741-742-Nginx-Vulnerability-Scanner

This repository contains a Python-based scanner for detecting Nginx versions and checking for vulnerabilities, including CVE-2022-41741 and CVE-2022-41742. It performs fingerprinting, version detection, and vulnerability analysis but does not include exploit code.

Classification
Scanner 95%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target: Nginx (versions < 1.23.3)
No auth needed
Prerequisites: Network access to the target Nginx server · Python 3.6+ with requests and packaging libraries
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec WORKING POC 1 stars
by dumbbutt0 · poc
https://github.com/dumbbutt0/evilMP4

This repository contains a PoC for CVE-2022-41741, an out-of-bounds read vulnerability in the ngx_http_mp4_module of nginx. It includes scripts to generate malformed MP4 files that exploit the vulnerability, potentially leading to information disclosure or DoS.

Classification
Working Poc 90%
Attack Type
Info Leak | Dos
Complexity
Moderate
Reliability
Reliable
Target: nginx with ngx_http_mp4_module
No auth needed
Prerequisites: nginx with ngx_http_mp4_module enabled · ability to upload or serve malformed MP4 files
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Mitigation, Vendor Advisory
https://support.f5.com/csp/article/K81926432
Third Party Advisory vendor-advisory
https://www.debian.org/security/2022/dsa-5281
Mailing List, Third Party Advisory mailing-list
https://lists.debian.org/debian-lts-announce/2022/11/msg00031.html

Scores

CVSS v3 7.0
EPSS 0.0076
EPSS Percentile 50.3%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-787
Status published
Products (12)
debian/debian_linux 10.0
debian/debian_linux 11.0
f5/nginx 1.23.0
f5/nginx 1.23.1
f5/nginx r1
f5/nginx r2
f5/nginx 1.1.3 - 1.22.0
f5/nginx r22 - r27
f5/nginx_ingress_controller 1.9.0 - 1.12.4
fedoraproject/fedora 35
... and 2 more
Published Oct 19, 2022
Tracked Since Feb 18, 2026