Nios Security Vulnerabilities and Issues — Nios CVE List

A privilege escalation vulnerability in the "support access" feature on Infoblox NIOS 6.8 through 8.4.1 could allow a locally authenticated administrator to temporarily gain additional privileges on an affected device and perform actions within the super user scope. The vulnerability is due to a we...

7.2CVSS6.8AI score0.00122EPSS

CVE•added 2025/02/27 11:15 p.m.•48 views

CVE-2024-36047

Infoblox NIOS through 8.6.4 and 9.x through 9.0.3 has Improper Input Validation.

9.8CVSS6.7AI score0.00188EPSS

CVE•added 2021/06/28 1:15 p.m.•41 views

CVE-2020-15303

Infoblox NIOS before 8.5.2 allows entity expansion during an XML upload operation, a related issue to CVE-2003-1564.

6.5CVSS7AI score0.00852EPSS

CVE•added 2023/08/25 8:15 p.m.•37 views

CVE-2023-37249

Infoblox NIOS through 8.5.1 has a faulty component that accepts malicious input without sanitization, resulting in shell access.

8.8CVSS8.6AI score0.00104EPSS

CVE•added 2024/01/09 2:15 p.m.•36 views

CVE-2022-28975

A stored cross-site scripting (XSS) vulnerability in Infoblox NIOS v8.5.2-409296 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the VLAN View Name field.

5.4CVSS5.2AI score0.00178EPSS