Networktocode Nautobot — known CVE vulnerabilities
Every CVE whose affected-product data names Networktocode Nautobot, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (17)
CVE-2026-44797 — CVSS 8.5 (high): Nautobot is a Network Source of Truth and Network Automation Platform. Prior to 2.4.33 and 3.1.2, Nautobot's Webhook data model and…
CVE-2023-25657 — CVSS 7.5 (high): Nautobot is a Network Source of Truth and Network Automation Platform. All users of Nautobot versions earlier than 1.5.7 are impacted by a…
CVE-2024-32979 — CVSS 7.5 (high): Nautobot is a Network Source of Truth and Network Automation Platform built as a web application atop the Django Python framework with a…
CVE-2024-34707 — CVSS 7.5 (high): Nautobot is a Network Source of Truth and Network Automation Platform. A Nautobot user with admin privileges can modify the `BANNER_TOP`…
CVE-2023-48705 — CVSS 7.1 (high): Nautobot is a Network Source of Truth and Network Automation Platform built as a web application All users of Nautobot versions earlier…
CVE-2024-23345 — CVSS 7.1 (high): Nautobot is a Network Source of Truth and Network Automation Platform built as a web application. All users of Nautobot versions earlier…
CVE-2026-44798 — CVSS 7.1 (high): Nautobot is a Network Source of Truth and Network Automation Platform. Prior to 2.4.33 and 3.1.2, a user with access to add/change a…
CVE-2025-49142 — CVSS 7.1 (high): Nautobot is a Network Source of Truth and Network Automation Platform. All users of Nautobot versions prior to 2.4.10 or prior to 1.6.32…
CVE-2026-44796 — CVSS 6.5 (medium): Nautobot is a Network Source of Truth and Network Automation Platform. Prior to 2.4.33 and 3.1.2, Nautobot UI object-bulk-rename endpoints…
CVE-2023-46128 — CVSS 6.5 (medium): Nautobot is a Network Automation Platform built as a web application atop the Django Python framework with a PostgreSQL or MySQL database…
CVE-2024-36112 — CVSS 6.3 (medium): Nautobot is a Network Source of Truth and Network Automation Platform. A user with permissions to view Dynamic Group records…
CVE-2025-49143 — CVSS 5.9 (medium): Nautobot is a Network Source of Truth and Network Automation Platform. Prior to v2.4.10 and v1.6.32 , files uploaded by users to Nautobot's…
CVE-2026-44794 — CVSS 5.4 (medium): Nautobot is a Network Source of Truth and Network Automation Platform. Prior to 2.4.33 and 3.1.2, in the case of inter-object references…
CVE-2023-50263 — CVSS 3.7 (low): Nautobot is a Network Source of Truth and Network Automation Platform built as a web application atop the Django Python framework with a…
CVE-2024-29199 — CVSS 3.7 (low): Nautobot is a Network Source of Truth and Network Automation Platform. A number of Nautobot URL endpoints were found to be improperly…
CVE-2023-51649 — CVSS 3.5 (low): Nautobot is a Network Source of Truth and Network Automation Platform built as a web application atop the Django Python framework with a…
CVE-2026-34203 — CVSS 2.7 (low): Nautobot is a Network Source of Truth and Network Automation Platform. Prior to versions 2.4.30 and 3.0.10, user creation and editing via…