Browse all 3 CVE security advisories affecting Bandisoft. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Bandisoft develops multimedia software, primarily focusing on video and audio editing tools like Bandicut and Bandizip. Historically, their products have been susceptible to remote code execution vulnerabilities, often through buffer overflow flaws in parsing media files, as well as cross-site scripting issues in web components. Security assessments reveal a pattern of insufficient input validation and memory safety concerns. While no major public security incidents have been widely documented, the three CVEs on record highlight recurring risks in handling untrusted file formats, emphasizing the need for robust memory management and secure coding practices in their software development lifecycle.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-33027 | Bandisoft Bandizip 安全漏洞 — BandizipCWE-830 | 6.1 | Medium | 2025-04-15 |
| CVE-2021-26615 | bandisoft ARK library integer overflow vulnerability — ARKCWE-190 | 7.8 | High | 2021-11-26 |
| CVE-2021-26603 | bandisoft ARK library heap overflow vulnerability — ARKCWE-122 | 8.6 | High | 2021-09-09 |
This page lists every published CVE security advisory associated with Bandisoft. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.