VIR Vulnerability Intelligence Relay

Package impact

golang Go / github.com/nezhahq/nezha

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2026-46716 critical 9.5 12d ago Nezha Monitoring: RoleMember can run shell on every server (cross-tenant RCE) via POST /api/v1/cron
CVE-2026-48119 unknown 3d ago Nezha's authenticated agents can forge service-monitor results for other users' services
CVE-2026-47268 unknown 6d ago Nezha's authenticated DDNS webhook configuration allows blind SSRF from the dashboard host