[Ledger CTO: Only About 30% of Servers Run the Latest Version, Increasing the Risk of NGINX Critical Vulnerability Spread] According to a report by Jinse Finance, on May 18, the NGINX critical vulnerability CVE-2026-42945 has been exploited by hackers. This vulnerability affects NGINX Open Source and NGINX Plus versions 0.6.27 to 1.30.0, potentially causing worker process crashes and enabling remote code execution (RCE) if ASLR protection is disabled. Ledger CTO Charles Guillemet stated that currently, the number of servers actually running the latest version of NGINX may not exceed 30%, and the speed of vulnerability propagation is outpacing the speed of IT teams' patching and upgrades.