Reading thru the POC exploit [1] and maybe safe for now. Not sure the ngnix on miab is running the right config.
[1] https://github.com/neex/phuip-fpizdam