Browse all 23 CVE security advisories affecting OneUptime. AI-powered Chinese analysis, POCs, and references for each vulnerability.
OneUptime operates as a monitoring and incident management platform, enabling organizations to track service availability and coordinate response efforts. Despite its utility in maintaining operational continuity, the software has faced significant scrutiny regarding its security posture, evidenced by the twenty-three recorded Common Vulnerabilities and Exposures (CVEs). Historical analysis reveals a pattern of critical flaws, primarily involving remote code execution and cross-site scripting, which allow attackers to compromise system integrity or steal user data. Additionally, privilege escalation vulnerabilities have been documented, potentially granting unauthorized users administrative control. These recurring issues suggest systemic weaknesses in input validation and access control mechanisms within the application’s architecture. While no single catastrophic public breach has been widely reported, the high volume of disclosed vulnerabilities indicates a need for rigorous security audits and proactive patch management to mitigate risks associated with its monitoring capabilities.
CVE-2026-277282026-02-26CVE-2026-275742026-02-22Showing up to 20 recent security advisories. View all →
This page lists every published CVE security advisory associated with OneUptime. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.