Browse all 4 CVE security advisories affecting BEC Technologies. AI-powered Chinese analysis, POCs, and references for each vulnerability.
BEC Technologies develops enterprise software solutions for supply chain management and logistics operations. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and insecure authentication mechanisms. While no major public security incidents have been widely reported, the four CVEs on record highlight recurring issues in access control and data handling. Their security posture appears typical for mid-sized enterprise software vendors, with vulnerabilities primarily centered on web application interfaces and API endpoints. Regular security updates and penetration testing would likely mitigate most identified risks.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-2773 | BEC Technologies Multiple Routers sys ping Command Injection Remote Code Execution Vulnerability — Multiple RoutersCWE-78 | 7.2 | - | 2025-04-23 |
| CVE-2025-2772 | BEC Technologies Multiple Routers Insufficiently Protected Credentials Information Disclosure Vulnerability — Multiple RoutersCWE-522 | 6.5 | - | 2025-04-23 |
| CVE-2025-2771 | BEC Technologies Multiple Routers Authentication Bypass Vulnerability — Multiple RoutersCWE-287 | 9.8 | - | 2025-04-23 |
| CVE-2025-2770 | BEC Technologies Multiple Routers Cleartext Password Storage Information Disclosure Vulnerability — Multiple RoutersCWE-256 | 6.5 | - | 2025-04-23 |
This page lists every published CVE security advisory associated with BEC Technologies. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.