Browse all 4 CVE security advisories affecting DECE Software. AI-powered Chinese analysis, POCs, and references for each vulnerability.
DECE Software develops digital content distribution platforms primarily serving media and entertainment industries. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and access control flaws. While no major public security incidents have been widely documented, the four CVEs recorded reveal consistent patterns in authentication bypass and insecure deserialization issues. Their security posture appears reactive rather than preventive, with patches typically released after vulnerability discovery. Organizations using DECE Software should implement network segmentation and regular security assessments to mitigate potential exploitation risks.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-6060 | XSS in DECE Software's Geodi — GeodiCWE-79 | 5.4 | Medium | 2025-07-29 |
| CVE-2025-6175 | CRLF Injection in DECE Software's Geodi — GeodiCWE-93 | 7.2 | High | 2025-07-29 |
| CVE-2023-6011 | Stored XSS in Geodi — GeodiCWE-79 | 5.4 | Medium | 2023-11-22 |
| CVE-2023-5921 | Function Bypass in Geodi — GeodiCWE-841 | 7.1 | High | 2023-11-22 |
This page lists every published CVE security advisory associated with DECE Software. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.