Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

dex — Vulnerabilities & Security Advisories 25

All 25 CVE vulnerabilities found in dex, with AI-generated Chinese analysis, references, and POCs.

Vendor: dexidp

CVE IDTitleCVSSSeverityPublished
CVE-2026-23570 Log timestamp tampering vulnerability in Content Distribution Service CWE-20 6.5 Medium2026-01-29
CVE-2026-23569 Out-of-bounds read vulnerability in Content Distribution Service CWE-125 6.5 Medium2026-01-29
CVE-2026-23568 Out-of-bounds read vulnerability in Content Distribution Service CWE-125 5.4 Medium2026-01-29
CVE-2026-23567 Integer underflow in Content Distribution Service UDP handler CWE-122 6.5 Medium2026-01-29
CVE-2026-23566 Log Injection in Content Distribution Service UDP Handler CWE-20 6.5 Medium2026-01-29
CVE-2026-23565 Denial-of-Service in Content Distribution Service CWE-476 6.5 Medium2026-01-29
CVE-2026-23564 Transmission of Unencrypted Data in Content Distribution Service CWE-319 6.5 Medium2026-01-29
CVE-2026-23571 Command Injection in 1E-Nomad-RunPkgStatusRequest Instruction in TeamViewer DEX CWE-20 6.8 Medium2026-01-29
CVE-2026-23563 Privilege escalation in TeamViewer DEX via DeleteFileByPath instruction CWE-59 5.7 Medium2026-01-29
CVE-2025-64995 Privilege Escalation via Process Hijacking in 1E-Exchange-NomadClientHealth-ConfigureGeneralSetting instruction CWE-427 6.5 Medium2025-12-11
CVE-2025-64994 Privilege Escalation via Uncontrolled Search Path in 1E-Nomad-SetWorkRate instruction CWE-427 6.5 Medium2025-12-11
CVE-2025-64993 Command Injection in 1E-ConfigMgrConsoleExtensions Instructions CWE-20 6.8 Medium2025-12-11
CVE-2025-64992 Command Injection in 1E-Nomad-PauseNomadJobQueue Instruction CWE-20 6.8 Medium2025-12-11
CVE-2025-64991 Command Injection in 1E-PatchInsights-Deploy Instruction CWE-20 6.8 Medium2025-12-11
CVE-2025-64990 Command Injection in 1E-Explorer-TachyonCore-LogoffUser Instruction CWE-20 6.8 Medium2025-12-11
CVE-2025-64989 Command Injection in 1E-Explorer-TachyonCore-FindFileBySizeAndHash Instruction CWE-20 7.2 High2025-12-11
CVE-2025-64988 Command Injection in 1E-Nomad-GetCmContentLocations Instruction CWE-20 7.2 High2025-12-11
CVE-2025-64987 Command Injection in 1E-Explorer-TachyonCore-CheckSimpleIoC Instruction CWE-20 7.2 High2025-12-11
CVE-2025-64986 Command Injection in 1E-Explorer-TachyonCore-DevicesListeningOnAPort Instruction CWE-20 7.2 High2025-12-11
CVE-2025-46266 Unauthenticated Transmission of Data in NomadBranch.exe CWE-20 4.3 Medium2025-12-11
CVE-2025-44016 File Hash Validation Bypass in NomadBranch.exe CWE-20 8.8 High2025-12-11
CVE-2025-12687 Denial-of-Service Vulnerability in NomadBranch.exe CWE-20 6.5 Medium2025-12-11
CVE-2024-23656 Dex 2.37.0 is discarding TLSconfig and always serves deprecated TLS 1.0/1.1 and insecure ciphers CWE-326 7.5 High2024-01-25
CVE-2022-39222 OAuth authorization code exposure in Dex CWE-200 9.3 Critical2022-10-06
CVE-2020-26290 Critical security issues in XML encoding in Dex CWE-347 9.3 Critical2020-12-28

All 25 known CVE vulnerabilities affecting dex with full Chinese analysis, references, and POCs where available.