Impact of NGINX related vulnerabilities on Carbon Black EDR
search cancel

Impact of NGINX related vulnerabilities on Carbon Black EDR

book

Article ID: 430662

calendar_today

Updated On:

Products

Carbon Black EDR

Issue/Introduction

Following vulnerabilities are found on a third-party component (NGINX) used in Carbon Black (CB) EDR and you need to know the impact.

CVE-2026-1580

CVE-2026-1642

CVE-2026-24512

CVE-2026-42945

Environment

CBEDR Server: 7.8.0/7.9.0/7.9.1

Resolution

CB EDR is not impacted by these CVEs.

  • CVE-2026-42945/CVE-2026-1642/CVE-2026-24512/CVE-2026-1580: No impact.
    • CB EDR is not using the nginx directives in an exploitable way.