A serious security vulnerability in Nginx UI is now being actively exploited, allowing attackers to take full control of servers without needing any authentication.
The flaw, identified as CVE 2026 33032, affects systems that have Model Context Protocol support enabled and exposes a dangerous endpoint that was left unprotected.
At the center of the issue is the “mcp_message” endpoint, which can be accessed remotely without any login. This means attackers can directly trigger powerful actions that are normally restricted, including modifying server configurations and restarting services. With just a single request, someone on the network can completely change how the web server behaves.
Security experts explain that the vulnerability essentially hands over full control of the Nginx service. Attackers can read sensitive configuration files, inject malicious server rules, and force the system to reload those changes instantly. This opens the door to data theft, malicious redirects, and full server compromise.
The flaw was initially reported in mid-March, and a fix was quickly released in version 2.3.4. However, things escalated after technical details and proof-of-concept exploits became public later in the month. Since then, threat intelligence reports confirm that hackers have already started exploiting the vulnerability in real-world attacks.
Nginx UI is widely used as a web-based management tool, making this issue particularly concerning. Thousands of exposed instances are still online, many of them publicly accessible, increasing the risk of widespread exploitation.
The attack itself is relatively straightforward. An attacker only needs network access to the target system. By establishing a connection and initiating a session, they can send commands to the vulnerable endpoint and gain access to multiple powerful management tools. From there, they can extract configuration data, insert malicious settings, and trigger automatic reloads to apply their changes.
If this article helped you, please consider supporting our work. Every small contribution keeps Abijita.com independent and running.
Because of the severity and active exploitation, administrators are strongly advised to update immediately. The safest version currently available is 2.3.6, which includes protections against this flaw. Delaying updates could leave systems fully exposed to takeover without any warning signs.
