Browse all 5 CVE security advisories affecting Novakon. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Novakon develops industrial control systems and manufacturing software, primarily serving the automation sector. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from insufficient input validation and access controls. While no major public incidents have been widely documented, their CVE history indicates consistent security challenges in web interfaces and communication protocols. The company's systems typically handle sensitive operational technology, making such vulnerabilities particularly concerning for industrial environments. Security researchers have noted that patch adoption has been inconsistent, leaving many installations exposed to known issues.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-9966 | Execution with Unnecessary Privileges — P series (P07, P10, P12, P15)CWE-269 | 9.8AI | CriticalAI | 2025-09-23 |
| CVE-2025-9965 | UDP Service Weak Authentication — P series (P07, P10, P12, P15)CWE-287 | 9.1AI | CriticalAI | 2025-09-23 |
| CVE-2025-9964 | Weak Authentication for Root User — P series (P07, P10, P12, P15)CWE-521 | 6.8AI | MediumAI | 2025-09-23 |
| CVE-2025-9963 | Path Traversal — P series (P07, P10, P12, P15)CWE-22 | 9.8AI | CriticalAI | 2025-09-23 |
| CVE-2025-9962 | Unauthenticated Buffer Overflow — P series (P07, P10, P12, P15)CWE-120 | 9.8AI | CriticalAI | 2025-09-23 |
This page lists every published CVE security advisory associated with Novakon. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.