A critical RCE vulnerability in Nezha Monitoring allows authenticated users to execute arbitrary commands on all managed servers, regardless of tenant boundaries.

A RoleMember user can create a malicious cron task that pushes arbitrary commands to the global server pool. These commands are executed by agents on all monitored servers, bypassing tenant isolation.

This is a critical cross-tenant Remote Code Execution (RCE) vulnerability. An attacker with minimal access can gain control over every server managed by the Nezha instance, leading to a complete compromise of the entire server fleet. Given the CVSS score of 9.9, this vulnerability poses an extreme threat to organizational operations.

Immediate Action: Update Nezha Monitoring to version 2.0.8 immediately.

Proactive Monitoring: Audit existing cron tasks within the Nezha dashboard for any unauthorized or suspicious commands. Review agent execution logs for command execution patterns.

Compensating Controls: Restrict access to the Nezha dashboard interface to a limited set of trusted administrators until the patch is applied.

Public Exploit Available: True

The ability to execute arbitrary code across an entire fleet of managed servers is a catastrophic risk. Administrators must update to version 2.0.8 immediately to prevent potential mass compromise of their server infrastructure.