Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Cato Networks — Vulnerabilities & Security Advisories 8

Browse all 8 CVE security advisories affecting Cato Networks. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Cato Networks provides a cloud-delivered SASE platform integrating network security functions. Historically, vulnerabilities have included remote code execution, cross-site scripting, and privilege escalation issues. The company has recorded 8 CVEs, with some flaws allowing unauthorized access or system compromise. While no major public security incidents have been widely reported, the presence of multiple CVEs indicates potential attack surfaces. The platform's centralized architecture and cloud-native design offer security advantages but also create dependencies that could be targeted. Organizations implementing Cato should prioritize timely patching and regular security assessments to mitigate identified risks.

Top products by Cato Networks: SDP Client Cato Client Socket
CVE IDTitleCVSSSeverityPublished
CVE-2025-14213 Cato's Socket WebUI is vulnerable to OS Command Injection — SocketCWE-78 8.8AIHighAI2026-03-31
CVE-2025-7012 Cato Networks Linux Client Local Privilege Escalation via Symlink — Cato ClientCWE-59 7.8AIHighAI2025-07-13
CVE-2025-3886 CatoNetworks CatoClient up to 5.8 PrivilegedHelperTool Race Condition — SDP ClientCWE-362 7.5 -2025-04-27
CVE-2024-6978 Cato Networks Windows SDP Client Local root certificates can be installed by low-privileged users — SDP ClientCWE-20 5.6 Medium2024-07-31
CVE-2024-6977 Cato Networks Windows SDP Client Sensitive data in trace logs can lead to account takeover — SDP ClientCWE-532 6.5 Medium2024-07-31
CVE-2024-6975 Cato Networks Windows SDP Client Local Privilege Escalation via openssl configuration file — SDP ClientCWE-426 8.8 High2024-07-31
CVE-2024-6974 Cato Networks Windows SDP Client Local Privilege Escalation via self-upgrade — SDP ClientCWE-426 8.8 High2024-07-31
CVE-2024-6973 Remote Code Execution in Cato Windows SDP client via crafted URLs — SDP ClientCWE-20 7.5 High2024-07-31

This page lists every published CVE security advisory associated with Cato Networks. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.