CVE-2026-53521
Nezha Monitoring: Stored future DDNS profile ID allows unauthorized use of another user's DDNS profile context
Vexday Risk Score
13Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 6.4EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
12 jun 2026Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
Nezha Monitoring is a self-hostable, lightweight, servers and websites monitoring and O&M tool. From version 2.0.14 to before version 2.1.0, PATCH /server/{id} accepts and persists nonexistent ddns_profiles IDs for a member-owned server. If another user later creates a DDNS profile with one of those IDs, the DDNS worker resolves the stored ID and dispatches an update using the other user's DDNS profile configuration in the context of the attacker's server. This issue has been patched in version 2.1.0.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:L
Produtos afetados
nezhahq · nezhaQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →