Browse all 3 CVE security advisories affecting Oliva Expertise. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Oliva Expertise develops enterprise software for supply chain management, with three CVEs recorded to date. Historically, vulnerabilities have included stored cross-site scripting (XSS) and remote code execution (RCE) flaws, often stemming from insufficient input validation. The company's products typically require authentication but have exhibited privilege escalation risks in previous versions. No major public security incidents have been documented, though the CVEs indicate potential exposure in web interfaces and API endpoints. Security assessments suggest consistent patterns of inadequate sanitization in user-controlled data processing, though the vendor has addressed reported issues in recent updates.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-2963 | SQLi in Oliva Expertise — Oliva Expertise EKSCWE-89 | 9.8 | Critical | 2023-07-17 |
| CVE-2023-2960 | XSS in Oliva Expertise — Oliva Expertise EKSCWE-79 | 6.1 | Medium | 2023-07-17 |
| CVE-2023-2959 | Authentication Bypass by Primary Weakness in Oliva Expertise — Oliva Expertise EKSCWE-305 | 7.5 | High | 2023-07-17 |
This page lists every published CVE security advisory associated with Oliva Expertise. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.