Known Vulnerabilities for products from Nexxtsolutions
Listed below are 7 of the newest known vulnerabilities associated with the vendor "Nexxtsolutions".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-31851 json | Nexxt Solutions Nebula 300+ firmware through version 12.01.01.37 does not implement rate limiting or account lockout mechanis... | Not Provided | 2026-03-23 | 2026-04-29 |
| CVE-2026-31850 json | Nexxt Solutions Nebula 300+ firmware through version 12.01.01.37 stores sensitive information, including administrative crede... | Not Provided | 2026-03-23 | 2026-04-29 |
| CVE-2026-31849 json | Nexxt Solutions Nebula 300+ firmware through version 12.01.01.37 does not implement CSRF protections on state-changing endpoi... | Not Provided | 2026-03-23 | 2026-04-29 |
| CVE-2026-31848 json | Nexxt Solutions Nebula 300+ firmware through version 12.01.01.37 uses the ecos_pw cookie for authentication, which contains B... | Not Provided | 2026-03-23 | 2026-04-29 |
| CVE-2026-31847 json | Hidden functionality in the /goform/setSysTools endpoint in Nexxt Solutions Nebula 300+ firmware through version 12.01.01.37 ... | Not Provided | 2026-03-23 | 2026-04-29 |
| CVE-2022-46080 json | Nexxt Nebula 1200-AC 15.03.06.60 allows authentication bypass and command execution by using the HTTPD service to enable TELN... | 9.8 - CRITICAL | 2023-07-06 | 2023-07-12 |
| CVE-2022-44149 json | The web service on Nexxt Amp300 ARN02304U8 42.103.1.5095 and 80.103.2.5045 devices allows remote OS command execution by plac... | 8.8 - HIGH | 2023-01-06 | 2023-01-30 |