CVE•Published 2026-03-11•Modified 2026-05-07•1 article on news•6 live references•NVD data

CVE-2023-27573Netboxlabs · Netbox-docker

Vulnerability data via NVD (ingested)

CVSS v3.1

9.0

CRITICAL

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

EPSS percentile

Exploit Prediction Scoring System · top 83% of all CVEs

Weaknesses (CWE)

CWE-1392Use of Default Credentials CWE-798Use of Hard-coded Credentials

Description

netbox-docker before 2.5.0 has a superuser account with default credentials (admin password for the admin account, and 0123456789abcdef0123456789abcdef01234567 value for SUPERUSER_API_TOKEN). In practice on the public Internet, almost all users changed the password but only about 90% changed the token. Having a default token value was intentional and was valuable for the main intended use case of the netbox-docker product (isolated development networks). Some users engaged in an effort to repurpose netbox-docker for production. The documentation for this effort stated that the defaults must not be used. However, installation did not ensure non-default values. The Supplier was aware of the CVE ID assignment and did not object to the assignment.

Timeline

Published 2026-03-11

Modified 2026-05-07

External references

NVD MITRE Exploit-DB GitHub PoC Sploitus VulnCheck

Search for exposed instances

Shodan + Censys queries derived from NVD's CPE data. The vuln tag catches assets Shodan has explicitly linked to this CVE; the product / banner fingerprints find exposed instances even when the vuln tag was never applied (which is common).

Shodan · vuln tag0 hosts

vuln:CVE-2023-27573

Hosts Shodan has explicitly fingerprinted as vulnerable.

Shodan · product

product:"Netboxlabs Netbox-docker"

All exposed Netboxlabs Netbox-docker instances — cross-reference with the CVE's affected-version range.

Shodan · banner/body mention

http.html:"Netbox-docker"

HTTP body or banner mentions "Netbox-docker" — catches deploys Shodan didn't identify as a product.

More intel sources (5)

Shodan report

vuln:CVE-2023-27573