CVE-2026-53520

6.5 MEDIUM

Nezha Monitoring is a self-hostable, lightweight, servers and websites monitoring and O&M tool

Published: 2026-06-12 · Last updated: 2026-06-12

Severity and scoring

CVSS: 6.5 MEDIUM
Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE: CWE-284

Description

Nezha Monitoring is a self-hostable, lightweight, servers and websites monitoring and O&M tool. From version 2.0.14 to before version 2.1.0, authenticated users can claim the dashboard Host through NAT and preempt all dashboard routing. This issue has been patched in version 2.1.0.

Source: NVD

References

[NVD]https://nvd.nist.gov/vuln/detail/CVE-2026-53520
[Other]https://github.com/nezhahq/nezha/security/advisories/GHSA-x6fg-52vr-hj4w

Related CVEs

Same CWE

CVE-2026-44783 — Discourse is an open-source discussion platform (5.4 MEDIUM)
CVE-2026-47182 — Frappe is a full-stack web application framework
CVE-2026-44976 — Frappe is a full-stack web application framework
CVE-2026-44208 — Frappe is a full-stack web application framework
CVE-2026-47200 — Nuxt is an open-source web development framework for Vue.js