Description
netbox-docker before 2.5.0 has a superuser account with default credentials (admin password for the admin account, and 0123456789abcdef0123456789abcdef01234567 value for SUPERUSER_API_TOKEN). In practice on the public Internet, almost all users changed the password but only about 90% changed the token. Having a default token value was intentional and was valuable for the main intended use case of the netbox-docker product (isolated development networks). Some users engaged in an effort to repurpose netbox-docker for production. The documentation for this effort stated that the defaults must not be used. However, installation did not ensure non-default values. The Supplier was aware of the CVE ID assignment and did not object to the assignment.
Published: 2026-03-11
Score: 9 Critical
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A superuser account is created in netbox-docker containers before version 2.5.0 with a fixed administrator password and a documented default API token (0123456789abcdef0123456789abcdef01234567). These credentials are usable over the network and therefore expose the system to full administrative control. The weakness is a credential disclosure (CWE‑798) and the presence of a hard‑coded secret represents a misuse of a fixed value (CWE‑1392).

Affected Systems

All releases of netbox-community:netbox-docker issued before 2.5.0 contain the insecure default credentials. The product’s documentation recommends changing these defaults, but the deployment does not enforce it, leaving the network exposed if the image is run unchanged.

Risk and Exploitability

The vulnerability carries a CVSS score of 9, categorized as critical. Its EPSS score is below 1 % and it is not listed in the CISA KEV catalog. An attacker only needs remote access to the containerized instance and the known default credentials, with no additional privileges required. While the likelihood of exploitation is considered low, the potential for complete administrative takeover warrants immediate action.

Generated by OpenCVE AI on May 7, 2026 at 19:55 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade netbox‑docker to version 2.5.0 or newer so that the image enforces a change of the default credentials.
  • After upgrading, set a unique SUPERUSER_API_TOKEN and change the admin password in the Docker environment configuration or in the NetBox settings file.
  • If an upgrade cannot be performed immediately, edit the container’s environment variables or configuration to replace the default token and password before restarting the service.
  • Continuously monitor NetBox logs and network traffic for attempts to use the default credentials, and audit access controls regularly.

Generated by OpenCVE AI on May 7, 2026 at 19:55 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 07 May 2026 20:15:00 +0000

Type Values Removed Values Added
Title netbox‑docker Default Superuser Credentials Exposed

Thu, 07 May 2026 18:15:00 +0000

Type Values Removed Values Added
First Time appeared Netboxlabs
Netboxlabs netbox-docker
Weaknesses CWE-798
CPEs cpe:2.3:a:netboxlabs:netbox-docker:*:*:*:*:*:*:*:*
Vendors & Products Netboxlabs
Netboxlabs netbox-docker

Fri, 20 Mar 2026 14:45:00 +0000

Type Values Removed Values Added
Title netbox‑docker Default Superuser Credentials Exposed

Wed, 11 Mar 2026 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 11 Mar 2026 12:00:00 +0000

Type Values Removed Values Added
First Time appeared Netbox
Netbox netbox-docker
Vendors & Products Netbox
Netbox netbox-docker

Wed, 11 Mar 2026 05:30:00 +0000

Type Values Removed Values Added
Description netbox-docker before 2.5.0 has a superuser account with default credentials (admin password for the admin account, and 0123456789abcdef0123456789abcdef01234567 value for SUPERUSER_API_TOKEN). In practice on the public Internet, almost all users changed the password but only about 90% changed the token. Having a default token value was intentional and was valuable for the main intended use case of the netbox-docker product (isolated development networks). Some users engaged in an effort to repurpose netbox-docker for production. The documentation for this effort stated that the defaults must not be used. However, installation did not ensure non-default values. The Supplier was aware of the CVE ID assignment and did not object to the assignment.
Weaknesses CWE-1392
References
Metrics cvssV3_1

{'score': 9, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H'}

Subscriptions

Netbox Netbox-docker
Netboxlabs Netbox-docker
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2026-03-11T14:23:00.621Z

Reserved: 2023-03-03T00:00:00.000Z

Link: CVE-2023-27573

cve-icon Vulnrichment

Updated: 2026-03-11T14:22:30.552Z

cve-icon NVD

Status : Analyzed

Published: 2026-03-11T06:17:11.933

Modified: 2026-05-07T18:13:07.807

Link: CVE-2023-27573

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-07T20:00:12Z

Weaknesses