All 2 CVE vulnerabilities found in DeerFlow, with AI-generated Chinese analysis, references, and POCs.
Vendor: Bytedance Inc.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-34430 | ByteDance DeerFlow LocalSandboxProvider Host Bash Escape CWE-184 | 8.8 | High | 2026-04-01 |
| CVE-2026-32859 | ByteDance DeerFlow Stored XSS via Inline Artifact Rendering CWE-79 | 5.4 | Medium | 2026-03-27 |
All 2 known CVE vulnerabilities affecting DeerFlow with full Chinese analysis, references, and POCs where available.