All 9 CVE vulnerabilities found in FreeFlow Core, with AI-generated Chinese analysis, references, and POCs.
Vendor: Xerox
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-2252 | XML External Entity (XXE) vulnerability resulting in Server-Side Request Forgery (SSRF) CWE-611 | 7.5 | High | 2026-02-27 |
| CVE-2026-2251 | Path Traversal leading to Remote Code Execution (RCE) CWE-22 | 9.8 | Critical | 2026-02-27 |
| CVE-2025-8356 | Path Traversal leading to RCE CWE-22 | 9.8 | Critical | 2025-08-08 |
| CVE-2025-8355 | XXE leading to SSRF CWE-611 | 7.5 | High | 2025-08-08 |
| CVE-2024-47559 | Authenticated RCE via Path Traversal CWE-22 | 7.6 | High | 2024-10-07 |
| CVE-2024-47558 | Authenticated RCE via Path Traversal CWE-22 | 7.6 | High | 2024-10-07 |
| CVE-2024-47557 | Pre-Auth RCE via Path Traversal CWE-22 | 8.3 | High | 2024-10-07 |
| CVE-2024-47556 | Pre-Auth RCE via Path Traversal CWE-22 | 8.3 | High | 2024-10-07 |
| CVE-2024-47555 | Missing Authentication - User & System Configuration CWE-306 | 8.3 | High | 2024-10-07 |
All 9 known CVE vulnerabilities affecting FreeFlow Core with full Chinese analysis, references, and POCs where available.