All 10 CVE vulnerabilities found in danswer-ai/danswer, with AI-generated Chinese analysis, references, and POCs.
Vendor: danswer-ai
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-7767 | Improper Access Control in danswer-ai/danswer CWE-862 | 8.3 | - | 2025-03-20 |
| CVE-2024-9612 | Unauthorized Access in danswer-ai/danswer CWE-1100 | 4.9 | - | 2025-03-20 |
| CVE-2024-8057 | Improper Access Control in danswer-ai/danswer CWE-306 | 9.8 | - | 2025-03-20 |
| CVE-2024-9617 | IDOR in danswer-ai/danswer CWE-639 | 7.5 | - | 2025-03-20 |
| CVE-2024-7957 | Arbitrary File Overwrite in danswer-ai/danswer CWE-29 | 8.1 | - | 2025-03-20 |
| CVE-2024-8065 | CSRF in danswer-ai/danswer CWE-352 | 8.1 | - | 2025-03-20 |
| CVE-2025-0182 | Denial of Service in danswer-ai/danswer CWE-770 | 7.5 | - | 2025-03-20 |
| CVE-2024-8028 | Denial of Service in danswer-ai/danswer CWE-770 | 7.5 | - | 2025-03-20 |
| CVE-2024-7819 | CORS Misconfiguration in danswer-ai/danswer CWE-346 | 6.5 | - | 2025-03-20 |
| CVE-2024-7779 | ReDoS (Regular Expression Denial of Service) in danswer-ai/danswer CWE-1333 | 7.5 | - | 2025-03-20 |
All 10 known CVE vulnerabilities affecting danswer-ai/danswer with full Chinese analysis, references, and POCs where available.