Nintex Automation
3 CVEs affecting Nintex Automation. Latest disclosed: 2025-03-10. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-27925 | High | 8.5 | 2025-03-10 | Nintex Automation 5.6 and 5.7 before 5.8 has insecure deserialization of user input. |
CVE-2025-27924 | Medium | 5.4 | 2025-03-10 | Nintex Automation 5.6 and 5.7 before 5.8 has a stored XSS issue associated with the "Navigate to a URL" action. |
CVE-2025-27926 | Medium | 4.3 | 2025-03-10 | In Nintex Automation 5.6 and 5.7 before 5.8, the K2 SmartForms Designer folder has configuration files (web.config) containing passwords that are readable by u⦠|