All 4 CVE vulnerabilities found in chall-manager, with AI-generated Chinese analysis, references, and POCs.
Vendor: ctfer-io
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-32768 | Chall-Manager's invalid NetworkPolicy enables a malicious actor to pivot into another namespace CWE-284 | 9.1 | - | 2026-03-20 |
| CVE-2025-53634 | Chall-Manager's HTTP Gateway have no header check timeout leading to potential slow loris attacks CWE-770 | 7.5AI | HighAI | 2025-07-10 |
| CVE-2025-53633 | Chall-Manager's scenario decoding process does not check for zip bombs CWE-405 | 9.1AI | CriticalAI | 2025-07-10 |
| CVE-2025-53632 | Chall-Manager's scenario decoding process does not check for zip slips CWE-22 | 7.5AI | HighAI | 2025-07-10 |
All 4 known CVE vulnerabilities affecting chall-manager with full Chinese analysis, references, and POCs where available.