Known Vulnerabilities for Nebula 300 by Nexxt Solutions
Listed below are 6 of the newest known vulnerabilities associated with "Nebula 300" by "Nexxt Solutions".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-31851 json | Nexxt Solutions Nebula 300+ firmware through version 12.01.01.37 does not implement rate limiting or account lockout mechanis... | Not Provided | 2026-03-23 | 2026-03-26 |
| CVE-2026-31850 json | Nexxt Solutions Nebula 300+ firmware through version 12.01.01.37 stores sensitive information, including administrative crede... | Not Provided | 2026-03-23 | 2026-03-26 |
| CVE-2026-31849 json | Nexxt Solutions Nebula 300+ firmware through version 12.01.01.37 does not implement CSRF protections on state-changing endpoi... | Not Provided | 2026-03-23 | 2026-03-26 |
| CVE-2026-31848 json | Nexxt Solutions Nebula 300+ firmware through version 12.01.01.37 uses the ecos_pw cookie for authentication, which contains B... | Not Provided | 2026-03-23 | 2026-03-26 |
| CVE-2026-31847 json | Hidden functionality in the /goform/setSysTools endpoint in Nexxt Solutions Nebula 300+ firmware through version 12.01.01.37 ... | Not Provided | 2026-03-23 | 2026-03-26 |
| CVE-2026-4217 json | A security vulnerability has been detected in XREAL Nebula App up to 3.2.1 on Android. This impacts an unknown function of th... | Not Provided | 2026-03-16 | 2026-03-16 |