Browse all 4 CVE security advisories affecting NFine. AI-powered Chinese analysis, POCs, and references for each vulnerability.
NFine is a low-code development platform enabling rapid application creation with minimal coding. Historically, it has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, as evidenced by its four recorded CVEs. The platform's security posture has been compromised through improper input validation and insufficient access controls, allowing attackers to execute arbitrary code or gain elevated privileges. While no major public incidents have been widely documented, the consistent pattern of vulnerabilities in these categories suggests potential risks for organizations relying on NFine for application development, particularly when default configurations or outdated versions are in use.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-2903 | NFine Rapid Development Platform access control — Rapid Development PlatformCWE-284 | 4.3 | Medium | 2023-05-25 |
| CVE-2023-2902 | NFine Rapid Development Platform access control — Rapid Development PlatformCWE-284 | 4.3 | Medium | 2023-05-25 |
| CVE-2023-2901 | NFine Rapid Development Platform access control — Rapid Development PlatformCWE-284 | 4.3 | Medium | 2023-05-25 |
| CVE-2023-2900 | NFine Rapid Development Platform CheckLogin weak hash — Rapid Development PlatformCWE-328 | 3.7 | Low | 2023-05-25 |
This page lists every published CVE security advisory associated with NFine. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.