Browse all 6 CVE security advisories affecting SoftIron. AI-powered Chinese analysis, POCs, and references for each vulnerability.
SoftIron specializes in hyper-converged infrastructure and storage solutions, primarily serving enterprises with its OverOps and Adapta products. Historically, their vulnerabilities have included remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from insufficient input validation and access controls. While no major public security incidents have been widely reported, the six CVEs on record highlight potential weaknesses in web interfaces and authentication mechanisms. Their products typically emphasize data resilience but require regular patching to address identified security gaps, particularly in management interfaces where authentication bypass vulnerabilities have been previously documented.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-1842 | HyperCloud Improper Refresh Token Validation and Access Token Invalidation Allows Long-Term Unauthorized Access — HyperCloudCWE-613 | 8.8AI | HighAI | 2026-02-20 |
| CVE-2025-10650 | Improper SSH Key Handling in Internal Debug Builds May Grant Cluster-Level Access to Non-Administrative Users — HyperCloudCWE-269 | 9.8AI | CriticalAI | 2025-09-18 |
| CVE-2024-13058 | Authenticated, non-admin users can create storage pools via the sifi API — HyperCloudCWE-269 | 6.5 | - | 2024-12-30 |
| CVE-2023-45085 | When compute hosts are disabled and reenabled, they immediately transition to "ON", not "INIT" — HyperCloudCWE-1419 | 3.2 | Low | 2023-12-05 |
| CVE-2023-45084 | Media caddy removal and reinsertion without reboot may cause data loss — HyperCloudCWE-820 | 7.0 | High | 2023-12-05 |
| CVE-2023-45083 | HyperCloud: "admin" and "serveradmin" users can be deleted — HyperCloudCWE-269 | 4.2 | Medium | 2023-12-05 |
This page lists every published CVE security advisory associated with SoftIron. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.