Vulnerabilidades em nautobot
19 resultadosCVE-2023-25657HIGHRemote code execution in Jinja2 template rendering in NautobotEPSS 1.5%CVE-2023-50263LOWNautobot allows unauthenticated db-file-storage viewsEPSS 0.7%CVE-2024-29199LOWUnauthenticated views may expose information to anonymous usersEPSS 0.6%CVE-2024-34707HIGHNautobot's BANNER_* configuration can be used to inject arbitrary HTML content into Nautobot pagesEPSS 0.6%CVE-2023-48705HIGHnautobot has XSS potential in custom links, job buttons, and computed fieldsEPSS 0.5%CVE-2023-46128MEDIUMExposure of hashed user passwords via REST API in NautobotEPSS 0.5%CVE-2024-32979HIGHReflected Cross-site Scripting potential in all object list views in NautobotEPSS 0.5%CVE-2023-51649LOWNautobot missing object-level permissions enforcement when running Job ButtonsEPSS 0.4%CVE-2024-23345HIGHNautobot has XSS potential in rendered Markdown fieldsEPSS 0.4%CVE-2023-48700MEDIUMClear Text Credentials Exposed via Onboarding TaskEPSS 0.4%CVE-2024-36112MEDIUMNautobot dynamic-group-members doesn't enforce permission restrictions on member objectsEPSS 0.4%CVE-2025-49143MEDIUMNautobot may allows uploaded media files to be accessible without authenticationEPSS 0.4%CVE-2026-44796MEDIUMNautobot: Object bulk rename UI actions vulnerable to denial of service by crafted regular expression (REDoS)EPSS 0.3%CVE-2025-49142MEDIUMNautobot vulnerable to secrets exposure and data manipulation through Jinja2 templatingEPSS 0.3%CVE-2026-44798HIGHNautobot: GitRepository.current_head field should not be writable through REST APIEPSS 0.3%CVE-2025-62607MEDIUMNautobot Single Source of Truth (SSoT) has an unauthenticated ServiceNow configuration URLEPSS 0.3%CVE-2026-34203LOWNautobot: Management of users via REST API does not apply configured password validatorsEPSS 0.2%CVE-2026-44797HIGHNautobot: Webhook definitions could be used for server-side request forgery (SSRF)EPSS 0.2%CVE-2026-44794MEDIUMNautobot: REST API permits creation of GenericForeignKey references to objects that the user should not be able to referenceEPSS 0.2%