Nerves-hub Nerves_hub_web
2 CVEs affecting Nerves-hub Nerves_hub_web. Latest disclosed: 2026-03-10. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-28806 | High | 8.8 | 2026-03-10 | Improper Authorization vulnerability in nerves-hub nerves_hub_web allows cross-organization device control via device bulk actions and device update API. Miss… |
CVE-2025-64097 | | 2026-01-22 | NervesHub is a web service that allows users to manage over-the-air (OTA) firmware updates of devices in the field. A vulnerability present starting in version… |