Browse all 5 CVE security advisories affecting CData. AI-powered Chinese analysis, POCs, and references for each vulnerability.
CData provides data connectivity solutions enabling applications to integrate with diverse data sources through standardized interfaces. Historically, vulnerabilities have included remote code execution, cross-site scripting, and privilege escalation, often stemming from improper input validation and authentication flaws. The company's products typically require network access and handle sensitive data, making them attractive targets. While no major public security incidents have been widely reported, the presence of five CVEs indicates ongoing security challenges. Their software architecture, which bridges multiple systems, necessitates rigorous security controls to prevent unauthorized access and data breaches in enterprise environments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-9273 | CData API Server MySQL Misconfiguration Information Disclosure Vulnerability — API ServerCWE-552 | 6.5 | - | 2025-09-02 |
| CVE-2024-31851 | CData Sync 安全漏洞 — SyncCWE-22 | 8.6 | High | 2024-04-05 |
| CVE-2024-31850 | CData Arc 安全漏洞 — ArcCWE-22 | 8.6 | High | 2024-04-05 |
| CVE-2024-31849 | CData Connect 安全漏洞 — ConnectCWE-22 | 9.8 | Critical | 2024-04-05 |
| CVE-2024-31848 | CData API Server 安全漏洞 — API ServerCWE-22 | 9.8 | Critical | 2024-04-05 |
This page lists every published CVE security advisory associated with CData. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.