Browse all 3 CVE security advisories affecting CDeX PSA. AI-powered Chinese analysis, POCs, and references for each vulnerability.
CDeX PSA is a professional services automation platform designed to streamline resource management, project tracking, and financial oversight for service-based organizations. Historically, the application has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, as evidenced by its three recorded CVEs. These vulnerabilities often stem from insufficient input validation and insecure authentication mechanisms. While no major public security incidents have been widely reported, the consistent presence of critical vulnerabilities in past versions highlights the importance of maintaining current patch levels and implementing robust access controls to mitigate potential exploitation risks.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-2465 | Open redirection in CDeX — CDeXCWE-601 | 6.1AI | MediumAI | 2024-03-21 |
| CVE-2024-2464 | Application users enumeration in CDeX — CDeXCWE-203 | 5.3AI | MediumAI | 2024-03-21 |
| CVE-2024-2463 | Weak password recovery mechanism in CDeX — CDeXCWE-640 | 9.1AI | CriticalAI | 2024-03-21 |
This page lists every published CVE security advisory associated with CDeX PSA. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.