A vulnerability, which was classified as critical , was found in F5 NGINX JavaScript up to 0.9.8 . Impacted is the function ngx.fetch of the component HTTP Handler . Such manipulation leads to heap-based buffer overflow. This vulnerability is listed as CVE-2026-8711 . The attack may be performed from remote. There is no available exploit. You should upgrade the affected component.