Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2026/05/30 2:12 a.m.17 views

CVE-2026-44796

Nautobot is a Network Source of Truth and Network Automation Platform. Prior to 2.4.33 and 3.1.2, Nautobot UI object-bulk-rename endpoints for example, /dcim/interfaces/rename/ were vulnerable to application-wide denial of service via maliciously crafted regular expressions in the find field in...

6.5CVSS5.8AI score0.00312EPSS
Exploits0References1
NVD
NVD
added 2026/05/28 6:16 p.m.18 views

CVE-2026-44796

Nautobot is a Network Source of Truth and Network Automation Platform. Prior to 2.4.33 and 3.1.2, Nautobot UI object-bulk-rename endpoints for example, /dcim/interfaces/rename/ were vulnerable to application-wide denial of service via maliciously crafted regular expressions in the find field in...

6.5CVSS0.00312EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/28 5:0 p.m.10 views

CVE-2026-44796

Nautobot is a Network Source of Truth and Network Automation Platform. Prior to 2.4.33 and 3.1.2, Nautobot UI object-bulk-rename endpoints for example, /dcim/interfaces/rename/ were vulnerable to application-wide denial of service via maliciously crafted regular expressions in the find field in...

6.5CVSS5.8AI score0.00312EPSS
Exploits0References6Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/28 5:0 p.m.10 views

CVE-2026-44796 Nautobot: Object bulk rename UI actions vulnerable to denial of service by crafted regular expression (REDoS)

Nautobot is a Network Source of Truth and Network Automation Platform. Prior to 2.4.33 and 3.1.2, Nautobot UI object-bulk-rename endpoints for example, /dcim/interfaces/rename/ were vulnerable to application-wide denial of service via maliciously crafted regular expressions in the find field in...

6.5CVSS5.8AI score0.00312EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/28 5:0 p.m.11 views

EUVD-2026-32975

Nautobot is a Network Source of Truth and Network Automation Platform. Prior to 2.4.33 and 3.1.2, Nautobot UI object-bulk-rename endpoints for example, /dcim/interfaces/rename/ were vulnerable to application-wide denial of service via maliciously crafted regular expressions in the find field in...

6.5CVSS5.8AI score0.00312EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/28 5:0 p.m.33 views

CVE-2026-44796 Nautobot: Object bulk rename UI actions vulnerable to denial of service by crafted regular expression (REDoS)

Nautobot is a Network Source of Truth and Network Automation Platform. Prior to 2.4.33 and 3.1.2, Nautobot UI object-bulk-rename endpoints for example, /dcim/interfaces/rename/ were vulnerable to application-wide denial of service via maliciously crafted regular expressions in the find field in...

6.5CVSS0.00312EPSS
Exploits0References5
CVE
CVE
added 2026/05/28 5:0 p.m.20 views

CVE-2026-44796

Nautobot contains a DoS vulnerability in UI object-bulk-rename endpoints (for example, /dcim/interfaces/rename/) where maliciously crafted regular expressions in the find field, when used with the use_regex flag, can cause an application-wide denial of service. The issue affects pre-fix versions ...

6.5CVSS5.8AI score0.00312EPSS
Exploits0References5Affected Software1
Snyk
Snyk
added 2026/05/13 3:30 p.m.9 views

Regular Expression Denial of Service (ReDoS)

Overview nautobot is a Source of truth and network automation platform. Affected versions of this package are vulnerable to Regular Expression Denial of Service ReDoS via the find field in combination with the useregex flag in the object bulk rename process. An attacker can cause the application ...

7.1CVSS5.7AI score0.00312EPSS
Exploits0References2
OSV
OSV
added 2026/05/13 3:30 p.m.7 views

GHSA-QRPW-GJVH-X5GM Nautobot: Object bulk rename UI actions vulnerable to denial of service by crafted regular expression (REDoS)

Impact Nautobot UI object-bulk-rename endpoints for example, /dcim/interfaces/rename/ were vulnerable to application-wide denial of service via maliciously crafted regular expressions in the find field in combination with the useregex flag. Patches A general-purpose timeout has been added to thes...

6.5CVSS5.8AI score0.00312EPSS
Exploits0References7
Github Security Blog
Github Security Blog
added 2026/05/13 3:30 p.m.16 views

Nautobot: Object bulk rename UI actions vulnerable to denial of service by crafted regular expression (REDoS)

Impact Nautobot UI object-bulk-rename endpoints for example, /dcim/interfaces/rename/ were vulnerable to application-wide denial of service via maliciously crafted regular expressions in the find field in combination with the useregex flag. Patches A general-purpose timeout has been added to thes...

6.5CVSS5.8AI score0.00312EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder