Browse all 3 CVE security advisories affecting Baidu. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Baidu operates primarily as a Chinese multinational technology company specializing in internet-related services, including search engines, cloud computing, and artificial intelligence. Historically, common vulnerabilities affecting the company include remote code execution, cross-site scripting, and privilege escalation flaws. Security researchers have identified multiple instances of insecure implementations in web services and APIs. While no major public security incidents have been widely documented, the three CVEs on record highlight potential risks in their web applications and cloud infrastructure. The company maintains security teams to address these issues, though the volume of reported vulnerabilities suggests ongoing challenges in securing their extensive digital ecosystem.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-7343 | Baidu UEditor cross site scripting — UEditorCWE-79 | 3.5 | Low | 2024-08-01 |
| CVE-2024-7342 | Baidu UEditor unrestricted upload — UEditorCWE-434 | 3.5 | Low | 2024-08-01 |
| CVE-2024-29183 | OpenRASP vulnerable to a reflected Cross-Site Scripting (XSS) attack in /login — openraspCWE-79 | 6.1 | Medium | 2024-04-19 |
This page lists every published CVE security advisory associated with Baidu. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.