CVE-2023-27573

CRITICAL EPSS 38.6%
Published Mar 11, 20263mo ago · Modified Jun 17, 20261w ago
9.8 CVSS 3.1
Critical
Find Similar
Published Mar 11, 2026 3mo ago
Last Modified Jun 17, 2026 1w ago

Description

netbox-docker before 2.5.0 has a superuser account with default credentials (admin password for the admin account, and 0123456789abcdef0123456789abcdef01234567 value for SUPERUSER_API_TOKEN). In practice on the public Internet, almost all users changed the password but only about 90% changed the token. Having a default token value was intentional and was valuable for the main intended use case of the netbox-docker product (isolated development networks). Some users engaged in an effort to repurpose netbox-docker for production. The documentation for this effort stated that the defaults must not be used. However, installation did not ensure non-default values. The Supplier was aware of the CVE ID assignment and did not object to the assignment.

CVSS Details

Base Score
9.8
Exploitability
3.9
Impact
5.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
38.6% percentile
Exploit & Patch Status
Public Exploit Known
Patch Available

Weaknesses 2

CWE-1392
CWE-798 Use of Hard-coded Credentials Authentication

Affected Products 1

VendorProductVersionRange
netboxlabsnetbox-docker* <2.5.0

References 3

  • github.com https://github.com/netbox-community/netbox-docker/issues/953
    ExploitIssue Tracking
  • github.com https://github.com/netbox-community/netbox-docker/pull/959
    Issue TrackingPatch
  • github.com https://github.com/netbox-community/netbox-docker/releases/tag/2.5.0
    Release Notes

Remediation

  • github.com https://github.com/netbox-community/netbox-docker/pull/959
    Issue TrackingPatch