Automation
This hub aggregates every CVE we track for Automation, a product in the security products space. Use it to gauge the current risk picture and drill into individual advisories.
5
CVEs tracked
0
Critical
3
High
0
In CISA KEV
Severity distribution
HIGH3MEDIUM2
Monthly trend
0
0
0
0
0
1
0
0
3
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 5 most recently published vulnerabilities affecting Automation.
- CVE-2025-27926In Nintex Automation 5.6 and 5.7 before 5.8, the K2 SmartForms Designer folder has configuration files (web.config) containing passwords that are readable by unauthorized users.4.3
- CVE-2025-27925Nintex Automation 5.6 and 5.7 before 5.8 has insecure deserialization of user input.8.5
- CVE-2025-27924Nintex Automation 5.6 and 5.7 before 5.8 has a stored XSS issue associated with the "Navigate to a URL" action.5.4
- CVE-2024-9845Under specific circumstances, insecure permissions in Ivanti Automation before version 2024.4.0.1 allows a local authenticated attacker to achieve local privilege escalation.7.8
- CVE-2022-44569A locally authenticated attacker with low privileges can bypass authentication due to insecure inter-process communication.7.8
Product normalization is registry-driven with AI assist and human review. How it works