Browse all 4 CVE security advisories affecting Cordaware. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Cordaware develops enterprise content management and document collaboration solutions, primarily serving organizations requiring secure document handling. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation and access control flaws. While no major public security incidents have been widely documented, the four CVEs attributed to Cordaware highlight recurring issues in authentication mechanisms and secure coding practices. Their security posture appears typical for mid-sized enterprise software vendors, with vulnerabilities primarily centered on web application interfaces and document processing components.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-0425 | Local Privilege Escalation via Config Manipulation — bestinformed InfoclientCWE-15 | 8.8 | - | 2025-02-18 |
This page lists every published CVE security advisory associated with Cordaware. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.