What does upgrading Nginx 1.18.0 to 1.29.8 fix?

Upgrading Nginx from 1.18.0 to 1.29.8 clears 7 known vulnerabilities (6 high), including 1 under active exploitation (CISA KEV). No tracked issues remain in 1.29.8.

← Nginx

Nginx: 1.18.0 → 1.29.8

Nginx / F5 · upgrade impact · Official site ↗

From1.18.07 known issues To1.29.80 known issues

Fixed by upgrading to 1.29.8 iVulnerabilities that affect 1.18.0 but no longer affect 1.29.8 — the security gain from this upgrade, by exploited status then exploitation probability.

Exploited first, then by exploitation probability (EPSS).

CVE-2023-44487 HIGH ● exploited EPSS 94% ✓ cleared in 1.29.8 CVE-2021-23017 HIGH EPSS 74% ✓ cleared in 1.29.8 CVE-2025-23419 MEDIUM EPSS 3% ✓ cleared in 1.29.8 CVE-2022-41741 HIGH EPSS 1% ✓ cleared in 1.29.8 CVE-2021-3618 HIGH EPSS 1% ✓ cleared in 1.29.8 CVE-2022-41742 HIGH EPSS 0% ✓ cleared in 1.29.8 CVE-2026-49975 HIGH EPSS 0% ✓ cleared in 1.29.8