CVE Catalog

CVE-2026-48119

HighCVSS 7.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.37%

28th percentile - higher than 28% of all known CVEs

Summary

Nezha Monitoring is a tool for monitoring servers and websites. In versions from 0.20.0 to before 2.0.12, authenticated agents can forge service-monitor results for other users' services. This issue has been patched in version 2.0.12.

Risk Assessment

Forging monitoring results can lead to incorrect operational decisions and undermine trust in the monitoring system within the organization.

Recommendation

It is recommended to upgrade to version 2.0.12 or later to mitigate this vulnerability.

Original NVD description (English source)

Nezha Monitoring is a self-hostable, lightweight, servers and websites monitoring and O&M tool. From version 0.20.0 to before version 2.0.12, authenticated agents can forge service-monitor results for other users' services. This issue has been patched in version 2.0.12.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS