CVE-2025-55740 Information

Description

nginx-defender is a high-performance enterprise-grade Web Application Firewall (WAF) and threat detection system engineered for modern web infrastructure. This is a configuration vulnerability affecting nginx-defender deployments. Example configuration files config.yaml and docker-compose.yml contain default credentials (default_password: ## Reference https://github.com/Anipaleja/nginx-defender/security/advisories/GHSA-pr72-8fxw-xx22

Related CNNVD

CNNVD-202508-2218 (Published: 2025-08-19)