Exploitation Summary
EIP tracks 3 public exploits for CVE-2026-42530. PoCs published by v4ltonn, 0xBlackash, HORKimhab.
AI-analyzed exploit summary The repository contains a scanner for CVE-2026-42530, which detects whether a remote nginx server is vulnerable to a QPACK encoder stream use-after-free vulnerability. It does not exploit the vulnerability but identifies it by observing the server's response to a crafted sequence of HTTP/3 streams.
Description
NGINX Open Source has a vulnerability in the ngx_http_v3_module module. When NGINX Open Source is configured to use the HTTP/3 QUIC module, a remote unauthenticated attacker along with conditions beyond their control can use a specially crafted HTTP/3 session to reopen a QPACK encoder stream. This may cause a Use-after-Free in the NGINX worker process leading to a restart. Additionally, attackers can execute code on systems with Address Space Layout Randomization (ASLR) disabled or when the attacker can bypass ASLR. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Exploits (3)
The repository contains a scanner for CVE-2026-42530, which detects whether a remote nginx server is vulnerable to a QPACK encoder stream use-after-free vulnerability. It does not exploit the vulnerability but identifies it by observing the server's response to a crafted sequence of HTTP/3 streams.
The repository contains a non-destructive scanner for CVE-2026-42530, a use-after-free vulnerability in NGINX HTTP/3 (QUIC). It checks for vulnerable versions by sending a safe HTTP/3 HEAD request and analyzing the Server header.
The repository lacks actual exploit code or technical details about CVE-2026-42530, instead providing generic setup instructions and a script to download external content. The README is filled with disclaimers and ethical use statements but no substantive vulnerability analysis.
References (1)
Scores
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H