Browse all 4 CVE security advisories affecting Lespeed. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Lespeed provides software for speedway management and timing systems. Historically, vulnerabilities have included remote code execution, cross-site scripting, and privilege escalation, often stemming from insufficient input validation and authentication flaws. The product has faced multiple security incidents, with four CVEs recorded, highlighting recurring issues in web interface security and improper access controls. These vulnerabilities have potentially allowed unauthorized system access and execution of arbitrary code, posing significant risks to operational integrity. Security researchers have identified patterns of insecure default configurations and inadequate session management, necessitating robust patch management and security hardening measures for deployment environments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-1489 | Lespeed WiseCleaner Wise System Monitor IoControlCode WiseHDInfo64.dll 0x9C402088 access control — WiseCleaner Wise System MonitorCWE-284 | 7.8 | High | 2023-03-18 |
| CVE-2023-1488 | Lespeed WiseCleaner Wise System Monitor IoControlCode WiseHDInfo64.dll 0x9C40A0E0 denial of service — WiseCleaner Wise System MonitorCWE-404 | 3.3 | Low | 2023-03-18 |
| CVE-2023-1487 | Lespeed WiseCleaner Wise System Monitor IoControlCode WiseHDInfo64.dll 0x9C40A0E0 denial of service — WiseCleaner Wise System MonitorCWE-404 | 5.5 | Medium | 2023-03-18 |
| CVE-2023-1486 | Lespeed WiseCleaner Wise Force Deleter IoControlCode WiseUnlock64.sys 0x220004 access control — WiseCleaner Wise Force DeleterCWE-284 | 4.4 | Medium | 2023-03-18 |
This page lists every published CVE security advisory associated with Lespeed. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.