Browse all 3 CVE security advisories affecting Shenzhen Dashi Tongzhou Information Technology. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Shenzhen Dashi Tongzhou Information Technology develops enterprise software solutions, with a core focus on information management systems. Historically, their products have been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues. The company currently has three CVEs recorded, primarily involving RCE in web applications and insufficient access controls. While no major public security incidents have been widely reported, their vulnerability history suggests consistent weaknesses in input validation and session management, potentially exposing enterprise clients to significant security risks if proper patching is not maintained.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-5680 | Shenzhen Dashi Tongzhou Information Technology AgileBPM Groovy Script SysScriptController.java executeScript deserialization — AgileBPMCWE-502 | 6.3 | Medium | 2025-06-05 |
| CVE-2025-5679 | Shenzhen Dashi Tongzhou Information Technology AgileBPM SysToolsController.java parseStrByFreeMarker deserialization — AgileBPMCWE-502 | 6.3 | Medium | 2025-06-05 |
| CVE-2024-12235 | Shenzhen Dashi Tongzhou Information Technology AgileBPM AuthorizationTokenCheckFilter.java doFilter access control — AgileBPMCWE-284 | 6.3 | Medium | 2024-12-05 |
This page lists every published CVE security advisory associated with Shenzhen Dashi Tongzhou Information Technology. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.