| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-31851 | Lack of Rate Limiting Enables Brute-Force Attacks in Nexxt Nebula 300+ | Nexxt Solutions | Nebula 300+ | 中危 | - | 2026-03-23 12:21:55 | Deep Dive |
| CVE-2026-31850 | Plaintext Storage of Credentials in Configuration Backup in Nexxt Nebula 300+ | Nexxt Solutions | Nebula 300+ | 中危 | - | 2026-03-23 12:21:42 | Deep Dive |
| CVE-2026-31849 | Missing CSRF Protection on Administrative Endpoints in Nexxt Nebula 300+ | Nexxt Solutions | Nebula 300+ | 中危 | - | 2026-03-23 12:17:00 | Deep Dive |
| CVE-2026-31848 | Reversible ecos_pw Cookie Allows Authentication Bypass in Nexxt Nebula 300+ | Nexxt Solutions | Nebula 300+ | 中危 | - | 2026-03-23 12:09:30 | Deep Dive |
| CVE-2026-31847 | Hidden Functionality Enables Remote Telnet Activation via /goform/setSysTools in Nexxt Nebula 300+ | Nexxt Solutions | Nebula 300+ | 中危 | - | 2026-03-23 12:07:05 | Deep Dive |
| CVE-2026-31846 | Unauthenticated Credential Disclosure via /goform/ate in Nexxt Nebula 300+ | Nexxt Solutions | Nebula 300+ / Tenda F3 V2.0 Firmware | Medium | 6.5 | 2026-03-23 12:00:42 | Deep Dive |