cosmos — Vulnerabilities & Security Advisories 4

All 4 CVE vulnerabilities found in cosmos, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-68271	Unauthenticated Remote Code Execution in openc3-api CWE-95	10.0	Critical	2026-01-13
CVE-2024-47529	OpenC3 COSMOS uses clear text storage of password/token (`GHSL-2024-129`) CWE-312	5.4	-	2024-10-02
CVE-2024-46977	OpenC3 COSMOS allows a path traversal via screen controller (`GHSL-2024-127`) CWE-22	6.5	-	2024-10-02
CVE-2024-43795	OpenC3 COSMOS vulnerable to cross-site scripting in Login functionality (`GHSL-2024-128`) CWE-79	6.1	-	2024-10-02

All 4 known CVE vulnerabilities affecting cosmos with full Chinese analysis, references, and POCs where available.