All 12 CVE vulnerabilities found in Nix, with AI-generated Chinese analysis, references, and POCs.
Vendor: NixOS
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-39860 | Nix sandbox escape: file write via symlink at FOD `.tmp` copy destination CWE-61 | 9.0 | Critical | 2026-04-08 |
| CVE-2025-53819 | Nix's privilege dropping to build user broke for macOS CWE-271 | 7.9 | High | 2025-07-14 |
| CVE-2025-46415 | Nix、lix和GNU Guix 安全漏洞 CWE-367 | 3.2 | Low | 2025-06-27 |
| CVE-2025-46416 | Nix、lix和GNU Guix 安全漏洞 CWE-282 | 2.9 | Low | 2025-06-27 |
| CVE-2025-52991 | Nix、lix和GNU Guix 安全漏洞 CWE-276 | 3.2 | Low | 2025-06-27 |
| CVE-2025-52992 | Nix、lix和GNU Guix 安全漏洞 CWE-732 | 3.2 | Low | 2025-06-27 |
| CVE-2025-52993 | Nix、lix和GNU Guix 竞争条件问题漏洞 CWE-362 | 5.6 | Medium | 2025-06-27 |
| CVE-2024-51481 | Nix allows macOS sandbox escape via built-in builders CWE-693 | 8.8 | - | 2024-10-31 |
| CVE-2024-47174 | Credential leak when credentials are used with `<nix/fetchurl.nix>` CWE-287 | 5.9 | Medium | 2024-09-26 |
| CVE-2024-45593 | Nix affected by unsafe NAR unpacking CWE-22 | 9.1 | Critical | 2024-09-10 |
| CVE-2024-38531 | Nix sandbox escape CWE-278 | 3.6 | Low | 2024-06-28 |
| CVE-2024-27297 | Nix Corruption of fixed-output derivations CWE-367 | 6.3 | Medium | 2024-03-11 |
All 12 known CVE vulnerabilities affecting Nix with full Chinese analysis, references, and POCs where available.