Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CERT/CC — Vulnerabilities & Security Advisories 9

Browse all 9 CVE security advisories affecting CERT/CC. AI-powered Chinese analysis, POCs, and references for each vulnerability.

CERT/CC serves as a national computer security response center, analyzing vulnerabilities and coordinating incident response across critical infrastructure. Historically, common vulnerability classes include remote code execution, cross-site scripting, and privilege escalation, reflecting persistent threats in software development. The organization maintains a CVE record of 9, documenting security flaws in various systems. Notable characteristics include its role in vulnerability disclosure coordination and providing actionable security advisories. While CERT/CC has handled numerous incidents, its primary focus remains on proactive vulnerability analysis and mitigation strategies to enhance overall cybersecurity posture across government and private sectors.

Top products by CERT/CC: VINCE - The Vulnerability Information and Coordination Environment VINCE VINCE - Vulnerability Information and Coordination Environment cveClient/cveInterface.js cveClient/encrypt-storage.js
CVE IDTitleCVSSSeverityPublished
CVE-2026-8142 CVE-2026-8142 — VINCE 6.5AIMediumAI2026-05-07
CVE-2026-35467 Private Key stored as extractable in browser IndexeDB — cveClient/encrypt-storage.jsCWE-522 7.5AIHighAI2026-04-02
CVE-2026-35466 Stored XSS via unsanitized input from remote service — cveClient/cveInterface.jsCWE-79 6.1AIMediumAI2026-04-02
CVE-2024-10469 CERT/CC VINCE versions before 3.0.9 allows authenticated user to access User Management view. — VINCECWE-276 6.5AIMediumAI2024-10-28
CVE-2024-9953 Potential DoS Vulnerability in CERT VINCE Software Before Version 3.0.8 — VINCE - Vulnerability Information and Coordination EnvironmentCWE-502 4.9AIMediumAI2024-10-14
CVE-2022-40238 A Remote Code Injection vulnerability exists in CERT software prior to version 1.50.5 — VINCE - The Vulnerability Information and Coordination EnvironmentCWE-502 8.0 -2022-10-26
CVE-2022-40248 An HTML injection vulnerability exists in CERT/CC VINCE software prior to version 1.50.4 — VINCE - The Vulnerability Information and Coordination EnvironmentCWE-74 5.4 -2022-10-10
CVE-2022-40257 An HTML injection vulnerability exists in CERT/CC VINCE software prior to version 1.50.4 — VINCE - The Vulnerability Information and Coordination EnvironmentCWE-74 5.4 -2022-10-10
CVE-2022-25799 An open redirect vulnerability exists in CERT/CC VINCE software prior to version 1.50.0 — VINCE - The Vulnerability Information and Coordination EnvironmentCWE-601 6.1 -2022-08-16

This page lists every published CVE security advisory associated with CERT/CC. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.