CVE Catalog

CVE-2026-53520

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.28%

20th percentile — higher than 20% of all known CVEs

Summary

Nezha Monitoring is a tool for monitoring servers and websites. In versions from 2.0.14 to before 2.1.0, authenticated users can claim the dashboard Host through NAT, allowing them to preempt all dashboard routing.

Risk Assessment

The organization may be exposed to unauthorized access to the management panel, potentially leading to serious security breaches and data loss.

Recommendation

It is recommended to upgrade to version 2.1.0 or later to mitigate this vulnerability.

Original NVD description (English source)

Nezha Monitoring is a self-hostable, lightweight, servers and websites monitoring and O&M tool. From version 2.0.14 to before version 2.1.0, authenticated users can claim the dashboard Host through NAT and preempt all dashboard routing. This issue has been patched in version 2.1.0.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS