| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2022-31066 | Configuration API in EdgeXFoundry exposes message bus credentials to local unauthenticated users | edgexfoundry | edgex-go | Medium | 5.9 | 2022-06-14 21:55:11 | Deep Dive |
| CVE-2021-41278 | Broken encryption in app-functions-sdk “AES” transform in EdgeX Foundry releases prior to Jakarta allows attackers to decrypt messages via unspecified vectors | edgexfoundry | app-functions-sdk-go | 中危 | - | 2021-11-18 23:50:11 | Deep Dive |
| CVE-2021-32753 | Weak password in API gateway in EdgeX Foundry Edinburgh, Fuji, Geneva, and Hanoi releases allows remote attackers to obtain authentication token via dictionary-based password attack when OAuth2 authentication method is enabled. | edgexfoundry | edgex-go | High | 8.3 | 2021-07-09 19:05:11 | Deep Dive |