nautobot Summary
Latest vulnerabilities published by nautobot
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Unauthenticated Information Disclosure in Nautobot Single Source of Truth
CVE-2025-62607NautobotNautobot-app-ssot5.3MEDIUMUser Authentication Lapse in Nautobot Network Automation Platform
CVE-2025-49143NautobotNautobot6.3MEDIUMInsufficient Security Configuration in Nautobot Network Automation Platform
CVE-2025-49142NautobotNautobot6MEDIUMNautobot Failure to Restrict Dynamic Group Member Listings Based on Object Permissions
CVE-2024-36112NautobotNautobot6.3MEDIUMCross-Site Scripting Vulnerability in Nautobot Network Automation Platform
CVE-2024-34707NautobotNautobotNautobot vulnerable to Reflected Cross-Site Scripting (Reflected XSS) attack
CVE-2024-32979NautobotNautobot7.5HIGHUnauthorized Access to Nautobot Endpoints Due to Default Configuration
CVE-2024-29199NautobotNautobot3.7LOWNautobot has XSS potential in rendered Markdown fields
CVE-2024-23345NautobotNautobot7.1HIGHNautobot missing object-level permissions enforcement when running Job Buttons
CVE-2023-51649nautobotnautobot3.5LOWNautobot allows unauthenticated db-file-storage views
CVE-2023-50263nautobotnautobot3.7LOWnautobot has XSS potential in custom links, job buttons, and computed fields
CVE-2023-48705nautobotnautobot5.4MEDIUMClear Text Credentials Exposed via Onboarding Task
CVE-2023-48700nautobotnautobot-plugin-device...6.5MEDIUMExposure of hashed user passwords via REST API in Nautobot
CVE-2023-46128NautobotNautobot6.5MEDIUMRemote code execution in Jinja2 template rendering in Nautobot
CVE-2023-25657NautobotNautobot7.5HIGH