Browse all 4 CVE security advisories affecting OpenC3. AI-powered Chinese analysis, POCs, and references for each vulnerability.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-68271 | Unauthenticated Remote Code Execution in openc3-api — cosmosCWE-95 | 10.0 | Critical | 2026-01-13 |
| CVE-2024-47529 | OpenC3 COSMOS uses clear text storage of password/token (`GHSL-2024-129`) — cosmosCWE-312 | 5.4 | - | 2024-10-02 |
| CVE-2024-46977 | OpenC3 COSMOS allows a path traversal via screen controller (`GHSL-2024-127`) — cosmosCWE-22 | 6.5 | - | 2024-10-02 |
| CVE-2024-43795 | OpenC3 COSMOS vulnerable to cross-site scripting in Login functionality (`GHSL-2024-128`) — cosmosCWE-79 | 6.1 | - | 2024-10-02 |
This page lists every published CVE security advisory associated with OpenC3. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.