Browse all 3 CVE security advisories affecting Rudloff. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Rudloff develops industrial control systems and automation software, primarily serving manufacturing and critical infrastructure sectors. Historically, vulnerabilities in rudloff products have frequently included remote code execution and cross-site scripting flaws, often stemming from insufficient input validation and improper authentication mechanisms. The organization has faced scrutiny for multiple privilege escalation issues in its web interfaces, with three CVEs documented to date. While no major public security incidents have been reported, rudloff's exposure to OT environments presents significant risks if exploited, given the potential for safety system disruption. The company's security posture has shown improvement in recent releases, though legacy systems remain vulnerable to known exploitation patterns.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2022-24739 | Server-Side Request Forgery (SSRF) and URL Redirection to Untrusted Site ('Open Redirect') in alltube — alltubeCWE-601 | 7.3 | High | 2022-03-08 |
| CVE-2022-0768 | Server-Side Request Forgery (SSRF) in rudloff/alltube — rudloff/alltubeCWE-918 | 7.5 | - | 2022-02-28 |
| CVE-2022-0692 | Open Redirect on Rudloff/alltube in rudloff/alltube — rudloff/alltubeCWE-601 | 6.1 | - | 2022-02-21 |
This page lists every published CVE security advisory associated with Rudloff. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.