All 3 CVE vulnerabilities found in nexkey, with AI-generated Chinese analysis, references, and POCs.
Vendor: nexryai
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-52077 | External apps using tokens issued by administrators and moderators can call admin APIs CWE-863 | 8.9 | High | 2023-12-27 |
| CVE-2023-49095 | nexkey allows arbitrary users to impersonate any remote user due to missing signature validation CWE-20 | 8.6 | High | 2023-11-30 |
| CVE-2023-43805 | Nexkey allows users to bypass authentication of Bull dashboard CWE-287 | 7.5 | High | 2023-10-04 |
All 3 known CVE vulnerabilities affecting nexkey with full Chinese analysis, references, and POCs where available.