Browse all 7 CVE security advisories affecting MOBATIME. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Mobatime develops time synchronization and clock management systems for critical infrastructure. Historically, their products have faced multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues. The company has seven CVEs on record, with several allowing unauthenticated attackers to execute arbitrary code or bypass security controls. While no major public security incidents have been documented, the consistent pattern of vulnerabilities in network-enabled timekeeping equipment presents risks for organizations relying on these systems for precise time synchronization across industrial, transportation, and financial sectors.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-3033 | Mobatime web application - broken authorisation mechanisms — Mobatime web applicationCWE-863 | 6.8 | Medium | 2023-06-02 |
| CVE-2023-3032 | Mobatime web application - Arbitrary file upload (RCE) — Mobatime web applicationCWE-434 | 8.1 | High | 2023-06-02 |
This page lists every published CVE security advisory associated with MOBATIME. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.