Browse all 3 CVE security advisories affecting AREAL SAS. AI-powered Chinese analysis, POCs, and references for each vulnerability.
AREAL SAS develops enterprise software solutions for supply chain management and logistics optimization. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and access control flaws. The company has recorded three CVEs, with one incident involving an authentication bypass that allowed unauthorized access to sensitive customer data. Their security posture has shown improvement in recent releases, though legacy systems remain vulnerable. AREAL SAS continues to address security gaps through regular patch cycles and enhanced code reviews, though comprehensive vulnerability remediation remains a challenge for their distributed customer base.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-1434 | XSS in AREAL SAS Topkapi Vision Webserv2 — Topkapi Vision Webserv2CWE-79 | 6.1 | Medium | 2025-03-11 |
| CVE-2023-50357 | Cross site scripting vulnerability in AREAL SAS Webserv1 ASP Web Site — Webserv1CWE-79 | 5.4 | Medium | 2024-01-31 |
| CVE-2023-50356 | Improper Certificate Validation in AREAL Topkapi Vision (Server) — Topkapi Vision (Server)CWE-295 | 6.5 | Medium | 2024-01-31 |
This page lists every published CVE security advisory associated with AREAL SAS. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.