Browse all 7 CVE security advisories affecting ZmartZone. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Zmartzone develops open-source SSO and identity management solutions, primarily serving as authentication gateways for web applications. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation and access control flaws. While no major public security incidents have been widely documented, the seven CVEs recorded highlight recurring issues in session management and authentication bypass mechanisms. Their codebase typically requires rigorous input sanitization and privilege boundary enforcement to mitigate risks associated with their role as critical infrastructure components.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2022-23527 | Open Redirect in oidc_validate_redirect_url() — mod_auth_openidcCWE-601 | 4.7 | Medium | 2022-12-14 |
| CVE-2021-39191 | URL Redirection to Untrusted Site ('Open Redirect') in mod_auth_openidc — mod_auth_openidcCWE-601 | 4.7 | Medium | 2021-09-03 |
| CVE-2021-32792 | XSS vulnerability when using OIDCPreservePost On in mod_auth_openidc — mod_auth_openidcCWE-79 | 3.1 | Low | 2021-07-26 |
| CVE-2021-32791 | Hardcoded static IV and AAD with a reused key in AES GCM encryption in mod_auth_openidc — mod_auth_openidcCWE-323 | 5.9 | Medium | 2021-07-26 |
| CVE-2021-32786 | Open Redirect in oidc_validate_redirect_url() — mod_auth_openidcCWE-601 | 4.7 | Medium | 2021-07-22 |
| CVE-2021-32785 | Format string bug in the Redis cache implementation — mod_auth_openidcCWE-134 | 5.3 | Medium | 2021-07-22 |
| CVE-2021-20718 | mod_auth_openidc 资源管理错误漏洞 — mod_auth_openidc | 7.5 | - | 2021-05-20 |
This page lists every published CVE security advisory associated with ZmartZone. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.