Infoblox Nios
10 CVEs affecting Infoblox Nios. Latest disclosed: 2026-02-12. Critical: 4, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-37566 | Critical | 9.8 | 2025-02-27 | Infoblox NIOS through 8.6.4 has Improper Authentication for Grids. |
CVE-2024-36047 | Critical | 9.8 | 2025-02-27 | Infoblox NIOS through 8.6.4 and 9.x through 9.0.3 has Improper Input Validation. |
CVE-2024-36046 | Critical | 9.8 | 2025-02-27 | Infoblox NIOS through 8.6.4 executes with more privileges than required. |
CVE-2024-37567 | Critical | 9.1 | 2025-02-27 | Infoblox NIOS through 8.6.4 has Improper Access Control for Grids. |
CVE-2025-61880 | High | 8.8 | 2026-02-12 | In Infoblox NIOS through 9.0.7, insecure deserialization can result in remote code execution. |
CVE-2023-37249 | High | 8.8 | 2023-08-25 | Infoblox NIOS through 8.5.1 has a faulty component that accepts malicious input without sanitization, resulting in shell access. |
CVE-2025-61879 | High | 7.7 | 2026-02-12 | In Infoblox NIOS through 9.0.7, a High-Privileged User Can Trigger an Arbitrary File Write via the Account Creation Mechanism. |
CVE-2018-10239 | Medium | 6.7 | 2019-06-17 | A privilege escalation vulnerability in the "support access" feature on Infoblox NIOS 6.8 through 8.4.1 could allow a locally authenticated administrator to te… |
CVE-2020-15303 | Medium | 6.5 | 2021-06-28 | Infoblox NIOS before 8.5.2 allows entity expansion during an XML upload operation, a related issue to CVE-2003-1564. |
CVE-2022-28975 | Medium | 5.4 | 2024-01-09 | A stored cross-site scripting (XSS) vulnerability in Infoblox NIOS v8.5.2-409296 allows attackers to execute arbitrary web scripts or HTML via a crafted payloa… |