Browse all 6 CVE security advisories affecting LuxSoft. AI-powered Chinese analysis, POCs, and references for each vulnerability.
LuxSoft develops enterprise resource planning (ERP) and customer relationship management (CRM) software for mid-market businesses. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and access control flaws. While no major public security incidents have been documented, the six CVEs on record indicate persistent security challenges, particularly in web application components and authentication mechanisms. Their software typically requires network exposure, increasing attack surface for potential exploitation. Security researchers have noted inconsistent patch response times, leaving some customer environments exposed between vulnerability disclosure and remediation.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-25224 | LuxSoft LuxCal Web Calendar 访问控制错误漏洞 — The LuxCal Web CalendarCWE-306 | 7.5 | - | 2025-02-18 |
| CVE-2025-25223 | LuxSoft LuxCal Web Calendar 路径遍历漏洞 — The LuxCal Web CalendarCWE-22 | 7.5 | - | 2025-02-18 |
| CVE-2025-25222 | LuxSoft LuxCal Web Calendar SQL注入漏洞 — The LuxCal Web CalendarCWE-89 | 9.8 | - | 2025-02-18 |
| CVE-2025-25221 | LuxSoft LuxCal Web Calendar SQL注入漏洞 — The LuxCal Web CalendarCWE-89 | 9.8 | - | 2025-02-18 |
| CVE-2023-47175 | LuxSoft LuxCal Web Calendar 安全漏洞 — LuxCal Web Calendar | 6.1AI | MediumAI | 2023-11-20 |
| CVE-2023-46700 | LuxSoft LuxCal Web Calendar 安全漏洞 — LuxCal Web Calendar | 9.8AI | CriticalAI | 2023-11-20 |
This page lists every published CVE security advisory associated with LuxSoft. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.