Browse all 5 CVE security advisories affecting Wangshen. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Wangshen is a Chinese-developed software platform primarily used for enterprise resource planning and supply chain management. Historically, vulnerabilities have included remote code execution, cross-site scripting, and privilege escalation, with five CVEs documented to date. The platform has faced scrutiny for security lapses, including insufficient input validation and authentication bypass issues. While no major public security incidents have been widely reported, the consistent pattern of vulnerabilities suggests potential risks for organizations relying on this system. Implementers should prioritize regular patching and security hardening to mitigate exposure to known exploitation vectors.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-4186 | Wangshen SecGate 3600 g=route_ispinfo_export_save path traversal — SecGate 3600CWE-22 | 6.3 | Medium | 2025-05-02 |
| CVE-2025-4185 | Wangshen SecGate 3600 g=obj_area_export_save path traversal — SecGate 3600CWE-22 | 6.3 | Medium | 2025-05-01 |
| CVE-2025-4078 | Wangshen SecGate 3600 g=log_export_file path traversal — SecGate 3600CWE-22 | 4.3 | Medium | 2025-04-29 |
| CVE-2024-5050 | Wangshen SecGate 3600 ?g=log_import_save unrestricted upload — SecGate 3600CWE-434 | 6.3 | Medium | 2024-05-17 |
| CVE-2024-3444 | Wangshen SecGate 3600 ?g=net_pro_keyword_import_save unrestricted upload — SecGate 3600CWE-434 | 4.7 | Medium | 2024-04-08 |
This page lists every published CVE security advisory associated with Wangshen. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.