Browse all 8 CVE security advisories affecting Simopro Technology. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Simopro Technology develops industrial control systems and SCADA solutions for critical infrastructure. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and insecure default configurations. The company has recorded 8 CVEs, with several allowing unauthenticated attackers to execute arbitrary code or bypass security controls. While no major public incidents have been widely documented, the prevalence of RCE vulnerabilities in their systems poses significant risks for industrial environments. Security researchers have noted that patch adoption remains inconsistent, leaving many deployed systems exposed to known exploits.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-6348 | Simopro Technology|WinMatrix - Missing Authentication — WinMatrixCWE-306 | 8.8 | High | 2026-04-16 |
| CVE-2025-7920 | Simopro Technology|WinMatrix3 Web package - Reflected Cross-Site Scripting — WinMatrix3 Web packageCWE-79 | 6.1 | Medium | 2025-07-21 |
| CVE-2025-7919 | Simopro Technology|WinMatrix3 Web package - SQL Injection — WinMatrix3 Web packageCWE-200 | 6.5 | Medium | 2025-07-21 |
| CVE-2025-7918 | Simopro Technology|WinMatrix3 Web package - SQL Injection — WinMatrix3 Web packageCWE-89 | 9.8 | Critical | 2025-07-21 |
| CVE-2025-7917 | Simopro Technology|WinMatrix3 Web package - Arbitrary File Upload — WinMatrix3 Web packageCWE-434 | 7.2 | High | 2025-07-21 |
| CVE-2025-7916 | Simopro Technology|WinMatrix3 - Insecure Deserialization — WinMatrix3CWE-502 | 9.8 | Critical | 2025-07-21 |
| CVE-2024-7202 | Simopro Technology WinMatrix3 Web package - SQL Injection — WinMatrix3CWE-89 | 9.8 | Critical | 2024-07-29 |
| CVE-2024-7201 | Simopro Technology WinMatrix3 Web package - SQL Injection — WinMatrix3CWE-89 | 9.8 | Critical | 2024-07-29 |
This page lists every published CVE security advisory associated with Simopro Technology. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.