THREATOPS
THREAT OPSCVEs › CVE-2026-48027

CVE-2026-48027 — Nx Console Embedded Malicious Code Vulnerability

CISA KEVExploited: confirmedNx

Nx Console contains an embedded malicious code vulnerability that allowed a malicious version of Nx Console to be published. The compromised extension fetched an obfuscated payload that could harvested credentials from multiple sources on disk and in memory.

Vulnerability details

Related reporting