Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.
9.3

CVE-2026-48027: Nx Console 18.95.0 allows malicious code to be executed

Known exploited Exploitation likelihood: 27%
CVE-2026-48027 CVE-2026-48027
Summary

A malicious version of Nx Console was briefly published and available for download. This version could potentially allow attackers to run malicious code on your system. To protect yourself, upgrade to version 18.100.0 of Nx Console as soon as possible.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software
VendorProductAffected versions
nx nx console All versions
nx nx_console 18.95.0
cpe:2.3:a:nx:nx_console:18.95.0:*:*:*:*:visual_studio_code:*:*
Original title
Nx Console Embedded Malicious Code Vulnerability
Original description
Nx Console contains an embedded malicious code vulnerability that allowed a malicious version of Nx Console to be published. The compromised extension fetched an obfuscated payload that could harvested credentials from multiple sources on disk and in memory.
Vulnerability type
CWE-506 Embedded Malicious Code
Published: 27 May 2026 · Updated: 28 May 2026 · First seen: 27 May 2026