All 3 CVE vulnerabilities found in ONYX, with AI-generated Chinese analysis, references, and POCs.
Vendor: n/a
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-42277 | Onyx: IDOR in /chat/file/{file_id} allows any authenticated user to download other users files CWE-639 | 6.5 | Medium | 2026-05-08 |
| CVE-2026-42276 | Onyx: IDOR in /chat/stop-chat-session allows any authenticated user to interrupt other users chat sessions CWE-639 | 4.3 | Medium | 2026-05-08 |
| CVE-2025-7894 | Onyx Chat Interface a3_generate_simple_sql.py generate_simple_sql sql injection CWE-89 | 6.3 | Medium | 2025-07-20 |
All 3 known CVE vulnerabilities affecting ONYX with full Chinese analysis, references, and POCs where available.