Browse all 4 CVE security advisories affecting Chitora soft. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Chitora soft develops enterprise resource planning (ERP) software for supply chain management. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from insufficient input validation and access controls. The company has four CVEs on record, including critical RCE vulnerabilities in their web components that could allow attackers to execute arbitrary code with system privileges. While no major public security incidents have been documented, the consistent pattern of vulnerabilities in their authentication and session management systems suggests ongoing security challenges that require remediation.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2017-2246 | Lhaz 安装程序安全漏洞 — Installer of Lhaz | 7.8 | - | 2017-07-14 |
| CVE-2017-2247 | Lhaz Self-extracting archive文件安全漏洞 — Self-extracting archive files created by Lhaz | 7.8 | - | 2017-07-14 |
| CVE-2017-2248 | Lhaz+安装程序安全漏洞 — Installer of Lhaz+ | 7.8 | - | 2017-07-14 |
| CVE-2017-2249 | Lhaz+ 安全漏洞 — Self-extracting archive files created by Lhaz+ | 7.8 | - | 2017-07-14 |
This page lists every published CVE security advisory associated with Chitora soft. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.