Lucene search
K

Neo4j < 5.26.21 Information Disclosure Vulnerability (CVE-2026-1622)

🗓️ 13 Feb 2026 00:00:00Reported by TenableType 
nessus
 nessus
🔗 www.tenable.com👁 7 Views

Neo4j before 5.26.21 discloses unredacted error data in query logs (CVE-2026-1622).

Related
Refs
Code
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2026-1622
4 Feb 202609:14
attackerkb
Chainguard
CVE-2026-1622 vulnerabilities
7 Feb 202601:17
cgr
Circl
CVE-2026-1622
16 Feb 202622:06
circl
CNNVD
Neo4j Enterprise Edition和Neo4j Community Edition 安全漏洞
4 Feb 202600:00
cnnvd
CVE
CVE-2026-1622
4 Feb 202609:14
cve
Cvelist
CVE-2026-1622 Unredacted data exposure in query.log
4 Feb 202609:14
cvelist
EUVD
EUVD-2026-5512
4 Feb 202609:14
euvd
Github Security Blog
Neo4j Enterprise and Community vulnerable to a potential information disclosure
4 Feb 202612:31
github
NVD
CVE-2026-1622
4 Feb 202610:16
nvd
OSV
CGA-8RJX-4WW4-VX5V
7 Feb 202600:46
osv
Rows per page
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(298972);
  script_version("1.2");
  script_set_attribute(attribute:"plugin_modification_date", value:"2026/02/16");

  script_cve_id("CVE-2026-1622");
  script_xref(name:"IAVB", value:"2026-B-0036");

  script_name(english:"Neo4j < 5.26.21 Information Disclosure Vulnerability (CVE-2026-1622)");

  script_set_attribute(attribute:"synopsis", value:
"The remote web server is affected by a Information Disclosure vulnerability");
  script_set_attribute(attribute:"description", value:
"According to its self-reported version number, the version of Neo4j running on the
remote host is a version prior to 5.26.21. It is, therefore, affected by a information disclosure vulnerability
where The obfuscate_literals option in the query logs does not redact error information, exposing unredacted 
data in the query log when a customer writes a query that fails. It can allow a user with legitimate access to 
the local log files to obtain information they are not authorised to see.
    
Note that Nessus has not tested for these issues but has instead
relied only on the application's self-reported version number");
  script_set_attribute(attribute:"see_also", value:"https://neo4j.com/security/CVE-2026-1622/");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Neo4j version 5.26.21  or later.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:S/C:P/I:N/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss4_vector", value:"CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N");
  script_set_attribute(attribute:"cvss4_supplemental", value:"CVSS:4.0/AU:N/R:U/V:D/RE:M");
  script_set_attribute(attribute:"cvss4_threat_vector", value:"CVSS:4.0/E:U");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2026-1622");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2026/02/04");
  script_set_attribute(attribute:"patch_publication_date", value:"2026/02/04");
  script_set_attribute(attribute:"plugin_publication_date", value:"2026/02/13");

  script_set_attribute(attribute:"potential_vulnerability", value:"true");
  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:neo4j:neo4j");
  script_set_attribute(attribute:"stig_severity", value:"II");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"CGI abuses");

  script_copyright(english:"This script is Copyright (C) 2026 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("neo4j_detect.nbin");
  script_require_keys("installed_sw/Neo4j", "Settings/ParanoidReport");
  script_require_ports("Services/www", 7474);

  exit(0);
}

include('vcf.inc');
include('http.inc');

var constraints;
var port = get_http_port(default:7474);
var app_info = vcf::get_app_info(app:'Neo4j', port:port, webapp:TRUE);
var ver = app_info['version'];

# regex to match a 2026.x.x format that is on a different release version to a 5.1.2 format
var regex_version = ".*(\d{4}).*";
if (report_paranoia < 2) audit(AUDIT_PARANOID);


if (ver =~ regex_version)
{
    constraints = [{ 'min_version': '2025.01', 'fixed_version' : '2026.01.03' }];
}
else 
{
    constraints = [
      { 'min_version': '4.4', 'fixed_version' : '4.4.48' },
      { 'min_version': '5.0', 'fixed_version' : '5.26.21' }
    ];
}

vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_NOTE);

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

16 Feb 2026 00:00Current
5.5Medium risk
Vulners AI Score5.5
CVSS 44.8
EPSS0.00144
SSVC
7