CVE-2026-31851
- EPSS 0.33%
- Veröffentlicht 23.03.2026 12:21:54
- Zuletzt bearbeitet 29.04.2026 17:37:36
Nexxt Solutions Nebula 300+ firmware through version 12.01.01.37 does not implement rate limiting or account lockout mechanisms on authentication interfaces. An attacker can perform unlimited authentication attempts against endpoints that rely on cre...
CVE-2026-31850
- EPSS 0.18%
- Veröffentlicht 23.03.2026 12:21:41
- Zuletzt bearbeitet 29.04.2026 17:39:51
Nexxt Solutions Nebula 300+ firmware through version 12.01.01.37 stores sensitive information, including administrative credentials and WiFi pre-shared keys, in plaintext within exported configuration backup files. These backup files can be obtained ...
CVE-2026-31849
- EPSS 0.12%
- Veröffentlicht 23.03.2026 12:16:59
- Zuletzt bearbeitet 29.04.2026 17:43:33
Nexxt Solutions Nebula 300+ firmware through version 12.01.01.37 does not implement CSRF protections on state-changing endpoints such as /goform/setSysTools and other administrative interfaces. As a result, an attacker can craft malicious web request...
CVE-2026-31848
- EPSS 0.28%
- Veröffentlicht 23.03.2026 12:09:30
- Zuletzt bearbeitet 29.04.2026 17:45:08
Nexxt Solutions Nebula 300+ firmware through version 12.01.01.37 uses the ecos_pw cookie for authentication, which contains Base64-encoded credential data combined with a static suffix. Because the encoding is reversible and lacks integrity protectio...
CVE-2026-31847
- EPSS 0.42%
- Veröffentlicht 23.03.2026 12:07:05
- Zuletzt bearbeitet 29.04.2026 17:46:52
Hidden functionality in the /goform/setSysTools endpoint in Nexxt Solutions Nebula 300+ firmware through version 12.01.01.37 allows remote enablement of a Telnet service. By sending a crafted POST request with parameters such as telnetManageEn=true a...