https://cybercrime.club/tags/http3/Infrastructure security news for people who build infrastructure.Hugo -- gohugo.ioen-usFri, 19 Jun 2026 23:09:16 -0400https://cybercrime.club/posts/nginx-cve-2026-42530-42055-http3-http2-grpc-unauth-rce/Fri, 19 Jun 2026 23:09:16 -0400https://cybercrime.club/posts/nginx-cve-2026-42530-42055-http3-http2-grpc-unauth-rce/F5 patched CVE-2026-42530 and CVE-2026-42055, two CVSS 9.2 unauthenticated memory-corruption bugs in NGINX's HTTP/3 and HTTP/2 paths. Both reach RCE where ASLR can be bypassed, and both touch NGINX Ingress Controller and Gateway Fabric.vulnerabilities