NEVER-ENDING SUPPORT FOR
Ingress NGINX

NES for Ingress NGINX provides a secure, drop-in replacement for end-of-life Ingress NGINX in Kubernetes deployments, leveraging HeroDevs infrastructure engineering expertise to fix vulnerabilities and ensure compliance. NES for Ingress NGINX provides Cloud Native stability, allowing platform teams to prioritize strategic migrations on their own schedule.

Get Pricing
White arrow
View Docs
Ingress NGINX logo

Patch CVEs, Meet Internal SLAs, Pass Audits — in Minutes.

CVE-2026-42945
CVE-2024-44337
CVE-2026-40890
CVE-2026-32282
CVE-2026-35205
CVE-2026-35204
CVE-2026-42945
CVE-2024-44337
CVE-2026-40890
CVE-2026-32282
CVE-2026-35205
CVE-2026-35204
CVE-2026-42945
CVE-2024-44337
CVE-2026-40890
CVE-2026-32282
CVE-2026-35205
CVE-2026-35204
Ingress NGINX logo
NES for Ingress NGINX
View Docs
Arrow
Get Pricing
CVE-2026-42945
CVE-2024-44337
CVE-2026-40890
CVE-2026-32282
CVE-2026-35205
CVE-2026-35204
CVE-2026-42945
CVE-2024-44337
CVE-2026-40890
CVE-2026-32282
CVE-2026-35205
CVE-2026-35204
CVE-2026-42945
CVE-2024-44337
CVE-2026-40890
CVE-2026-32282
CVE-2026-35205
CVE-2026-35204

NES for Ingress NGINX is a secure drop-in replacement and takes just a few minutes to set up.

Step 1

Add the HeroDevs Helm Repo

Add the HeroDevs Helm Repo code

Requires your NES credentials — contact our team for access.

Step 2

Upgrade Your Ingress Controller

Upgrade Your Ingress Controller code

Replaces the upstream controller in-place. All Ingress rules and app config stay untouched.

You're Protected

CVE patches are delivered via new NES releases. Update your Helm release to stay current — SLA-backed, with no routing changes required.

00

Days

00

Hours

00

Minutes

00

Seconds

Since End of Security Support for Ingress NGINX 1.29

CVE Protection

By purchasing HeroDevs' Never-Ending Support for Ingress NGINX, you're ensuring that your cluster's ingress controller stays secure and actively exploited vulnerabilities in EOL Ingress NGINX are mitigated. As more CVEs are discovered, you can rest easy knowing HeroDevs will fix them.

If you're currently running EOL Ingress NGINX in your cluster, your infrastructure is exposed to the CVEs listed below.

Switch to NES for Ingress NGINX in minutes to immediately mitigate these vulnerabilities.
Severity
ID
Category
Version(s) Affected
Published Date
Critical
CVE-2026-42945
Heap-based Buffer Overflow
NGINX OSS 0.6.27 through 1.30.0; NGINX Plus R32 through R36; Ingress NGINX Controller builds that compile against those versions (including upstream v1.15.1)
May 18, 2026
Medium
CVE-2024-44337
Denial of Service
<v0.0.0-20240729232818-a2a9c4f76ef5 (and Ingress NGINX builds that ship an earlier gomarkdown)
Apr 29, 2026
High
CVE-2026-40890
Denial of Service
<v0.0.0-20260411013819-759bbc3e3207 (and Ingress NGINX builds that ship an earlier gomarkdown)
Apr 29, 2026
Medium
CVE-2026-32282
Improper Link Resolution Before File Access ('Link Following')
Go <1.25.9 and 1.26.0 through 1.26.1 (and Ingress NGINX builds compiled with them)
Apr 29, 2026
High
CVE-2026-35205
Improper Verification of Cryptographic Signature
Helm 4.0.0 through 4.1.3 (and Ingress NGINX builds that ship them)
Apr 29, 2026
High
CVE-2026-35204
Path Traversal
Helm 4.0.0 through 4.1.3 (and Ingress NGINX builds that ship them)
Apr 29, 2026
Get Support
See Full Directory

More about NES for Ingress NGINX

Kubernetes-Native Delivery

Delivered as an OCI container image and Helm chart — integrates naturally with GitOps, ArgoCD, and Flux workflows.

NES for Ingress NGINX is HeroDevs' commercially supported drop-in replacement for organizations running end-of-life Ingress NGINX controller versions. NES delivers ongoing CVE patches and compliance coverage for Ingress NGINX via a Helm chart and OCI container image. Built with infrastructure engineering expertise, NES for Ingress NGINX provides stability, giving your platform team the time to migrate right.

What is Never-Ending Support?

Security icon

Security Fixes

A new patched container of NES for Ingress NGINX will be released each time we find, validate, and fix a security issue.

Compatibility icon

Drop-In Compatibility

A direct replacement in your Kubernetes stack—no migrations, no rewrites, just ongoing support.

SLA Compliance icon

SLA Compliance

Our patch delivery SLA guarantees that your organization will be compliant with SOC 2, NIS2, PCI DSS, HIPAA, and other compliance standards and regulations.

Learn more.
Team of Experts icon

Team of Experts

NES for Ingress NGINX is supported by our team of open source security engineers

Easy to install icon

Easy to Install

Our simple drop-in replacement means all you have to do is change your package.json and rebuild your project. No code changes or find & replace required.

Shield icon

Commercial Contract Assurances

OSS NES is not only secure and compatible, but is offered with industry-standard commercial assurances for the use of HeroDevs Services.

Learn more.

We Partner With Core Contributors

We Partner With Core Contributors

We collaborate with open-source engineers and ecosystem contributors to ensure our Never-Ending Support products are the same quality you've come to expect from the originals.

By involving engineers with deep project expertise, we set a new standard in open-source software maintenance to ensure that NES for Ingress NGINX is as dependable as the upstream technology it's built on.

Learn More →
Vue LogoAngular LogoOpenJS Foundation logoDrupal Association logoNuxt LogoProtractor logo
User icon wiht computer

We Give Back to Open Source

HeroDevs is deeply committed to the open-source community. We support it through sponsorships, backing core contributors, and funding events that drive the ecosystem forward. Our engagement extends beyond financial contributions, embodying a commitment to the ongoing growth and innovation of open-source software.

Learn More →

VEX Statements for Every Fix

Every NES release for Ingress NGINX ships with VEX (Vulnerability Exploitability eXchange) statements — giving your security and compliance teams the evidence they need for audits, SBOMs, and customer security questionnaires.

View Release Notes →

Latest News

Security

May 22, 2026

Package Override Kill Switches: npm, pnpm, Yarn, Maven, Gradle & NuGet

A copy-paste reference for emergency dependency control across every major package manager — plus what to do when the only safe version of a component is one upstream no longer ships.

Security

May 20, 2026

Apache Tomcat May 2026 Security Release: 7 CVEs Affect Tomcat 8.5

How Apache's May 10 release impacts an EOL version the official security page no longer documents

Thought Leadership

May 19, 2026

What Is "AI Slop" in Security? A Plain-Language Guide to AI-Generated Vulnerability Reports

How AI-generated vulnerability noise is overwhelming maintainers—and reshaping the future of open source security.

More posts

Contact Us

Got questions about Never-Ending Support for your open-source library? We're here to help!

Discover how HeroDevs NES Products can keep your systems secure and compliant.

Learn how our solutions can deliver value to your organization.

Get detailed pricing information tailored to your needs.

Google logoLilly logoAbbott logoBox logoEG logoHitachi logoDropbox logoNHS logoWorkday logoFinra logoMicrosoft logoSantander logoSAP logo
Talk to an Expert
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.