HIGHVulnerability
Verified
Global

CISA KEV: Nx Nx Console — Nx Console Embedded Malicious Code Vulnerability

·Source: CISA KEV

Updated:

Executive Summary

Nx Console contains an embedded malicious code vulnerability that allowed a malicious version of Nx Console to be published. The compromised extension fetched an obfuscated payload that could harvested credentials from multiple sources on disk and in memory.

Analysis

Nx Console contains an embedded malicious code vulnerability that allowed a malicious version of Nx Console to be published. The compromised extension fetched an obfuscated payload that could harvested credentials from multiple sources on disk and in memory. Added to CISA Known Exploited Vulnerabilities catalog on 2026-05-27. Remediation due: 2026-06-10.

Indicators of Compromise (1)

CVE (1)
CVE-2026-48027
NVDMITRE CVE
Source Attribution

Originally published by CISA KEV on May 27, 2026. Verified by: CISA.

Related Threats

MEDIUMVulnerabilityNEW

Infosecurity Europe: Tabletop Exercise to Test How CISOs Respond to Major Supermarket Cyber-Attack

Semperis is set to bring ‘Enter the War Room: A Tabletop Experience’ to Infosecurity Europe to help cybersecurity leaders prepare to face real incidents

Infosecurity Magazine
LOWVulnerabilityNEW

Dragos Acquires xIoT Security Firm Phosphorus

Dragos said customers will soon gain expanded asset visibility and integrated device intelligence, with automated remediation workflows and a unified platform experience to follow. The post Dragos Acquires xIoT Security Firm Phosphorus appeared first on SecurityWeek .

SecurityWeek
MEDIUMVulnerabilityNEW

Started my first writeup - Sherlock NeuroSync-D (CVE-2025-29927)

[object Object]

CVE-2025-29927
r/cybersecurity