Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

CVE-2026-56301— Nuxt - Arbitrary File Read via World-Connectable vite-node IPC Socket on Linux

CVSS 5.5 · Medium EPSS 0.10% · P1

Affected Version Matrix 4

VendorProductVersion RangeStatus
NuxtNuxt4.0.0< 4.4.7affected
4.4.7unaffected
3.18.0< 3.21.7affected
3.21.7unaffected
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-56301

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
Nuxt - Arbitrary File Read via World-Connectable vite-node IPC Socket on Linux
Source: NVD (National Vulnerability Database)
Vulnerability Description
Nuxt 4.0.0 before 4.4.7 and 3.18.0 before 3.21.7, when running the development server (nuxt dev) on Linux, binds the vite-node IPC server to an abstract-namespace Unix socket without permission restrictions, allowing local users to enumerate and connect. Unprivileged co-resident users can exploit the unprotected module request handler to read arbitrary files such as .env and SSH keys through the SSR plugin pipeline. Production builds are unaffected, as the IPC server runs only in development.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
缺省权限不正确
Source: NVD (National Vulnerability Database)
Vulnerability Title
Nuxt 权限许可和访问控制问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Nuxt是Nuxt团队开源的一个免费的开源框架。 Nuxt 4.4.7之前版本和3.21.7之前版本存在权限许可和访问控制问题漏洞,该漏洞源于在Linux上运行开发服务器时,将vite-node IPC服务器绑定到抽象命名空间Unix套接字且未设置权限限制,可能导致本地用户枚举和连接,低权限用户可利用未受保护的模块请求处理器通过SSR插件管道读取任意文件。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
NuxtNuxt 4.0.0 ~ 4.4.7 -
NuxtNuxt 3.18.0 ~ 3.21.7 -

II. Public POCs for CVE-2026-56301

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2026-56301

登录查看更多情报信息。

Patches & Fixes for CVE-2026-56301 (2)

Vendor Advisories for CVE-2026-56301 (2)

IV. Related Vulnerabilities

V. Comments for CVE-2026-56301

No comments yet


Leave a comment