Browse all 3 CVE security advisories affecting edgexfoundry. AI-powered Chinese analysis, POCs, and references for each vulnerability.
EdgeX Foundry operates as an open-source IoT edge computing platform enabling device management and data processing at the network's edge. Historically, the project has faced vulnerabilities including remote code execution, cross-site scripting, and privilege escalation, often stemming from improper input validation and authentication flaws. While no major security incidents have been widely documented, the platform's distributed architecture and third-party integrations present potential attack surfaces. With three CVEs currently recorded, security remains a focus area as the project continues to evolve in complex IoT environments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2021-41278 | Broken encryption in app-functions-sdk “AES” transform in EdgeX Foundry releases prior to Jakarta allows attackers to decrypt messages via unspecified vectors — app-functions-sdk-goCWE-327 | 7.5 | - | 2021-11-18 |
This page lists every published CVE security advisory associated with edgexfoundry. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.