F5 has released security updates to address two critical remote code execution (RCE) vulnerabilities in NGINX Open Source. CVE-2026-42530, a use-after-free flaw in the ngx_http_v3_module, can be triggered by remote unauthenticated attackers. These vulnerabilities pose a significant risk to systems running affected NGINX versions, and immediate patching is recommended.