Browse all 3 CVE security advisories affecting Karmasis Informatics. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Karmasis Informatics develops enterprise software solutions with a focus on workflow automation and data management systems. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and access control flaws. The company has three CVEs on record, including critical RCE flaws in their flagship platform that could allow unauthorized system compromise. While no major public security incidents have been documented, their vulnerability history suggests a pattern of security gaps in authentication mechanisms and secure coding practices, requiring ongoing remediation efforts to maintain secure deployment environments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2022-24038 | Unauthorized modification in Karmasis Informatics Infraskope SIEM+ — Infraskope SIEM+CWE-284 | 6.5 | Medium | 2022-11-18 |
| CVE-2022-24037 | Unauthorized modification in Karmasis Informatics Infraskope SIEM+ — Infraskope SIEM+CWE-20 | 8.2 | High | 2022-11-18 |
| CVE-2022-24036 | Unauthorized modification in Karmasis Informatics Infraskope SIEM+ — Infraskope SIEM+CWE-284 | 8.6 | High | 2022-11-16 |
This page lists every published CVE security advisory associated with Karmasis Informatics. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.