Browse all 3 CVE security advisories affecting EXFO. AI-powered Chinese analysis, POCs, and references for each vulnerability.
EXFO specializes in network testing and assurance solutions for telecommunications and broadband industries. Historically, their products have faced vulnerabilities including remote code execution, cross-site scripting, and privilege escalation, often stemming from web interfaces and network services. While no major public security incidents have been widely documented, the company maintains a moderate CVE count with three records to date. Their security posture reflects typical challenges in complex networking equipment, requiring regular patching and access controls. EXFO's focus on critical infrastructure necessitates robust security measures to prevent potential exploitation of their testing and monitoring platforms in telecommunications environments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2022-39185 | EXFO - BV-10 Performance Endpoint Unit Undocumented privileged user. — BV-10 Performance Endpoint Unit | 9.8 | Critical | 2023-01-12 |
| CVE-2022-39186 | EXFO - BV-10 Performance Endpoint Unit Misconfiguration — BV-10 Performance Endpoint Unit | 6.2 | Medium | 2023-01-12 |
This page lists every published CVE security advisory associated with EXFO. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.