Browse all 16 CVE security advisories affecting floragunn. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Floragunn develops identity and access management solutions for enterprise applications, with its flagship product being an open-source SSO server. Historically, the project has been associated with multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, accounting for its 16 recorded CVEs. Notable security characteristics include its Java-based architecture and integration with various authentication protocols. While no major public security incidents have been widely documented, the consistent discovery of RCE vulnerabilities in its authentication and session management components has raised concerns among security researchers regarding input validation and secure coding practices within the platform.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2019-13421 | floragunn Search Guard 信息泄露漏洞 — Search GuardCWE-522 | 4.9 | - | 2019-08-23 |
| CVE-2019-13415 | floragunn Search Guard 授权问题漏洞 — Search GuardCWE-280 | 6.5 | - | 2019-08-13 |
| CVE-2019-13416 | floragunn Search Guard 授权问题漏洞 — Search GuardCWE-285 | 6.5 | - | 2019-08-13 |
| CVE-2019-13419 | floragunn Search Guard 信息泄露漏洞 — Search GuardCWE-311 | 7.5 | - | 2019-08-13 |
| CVE-2019-13420 | floragunn Search Guard 信息泄露漏洞 — Search GuardCWE-208 | 5.9 | - | 2019-08-13 |
| CVE-2019-13418 | floragunn Search Guard 输入验证错误漏洞 — Search GuardCWE-311 | 7.5 | - | 2019-08-12 |
| CVE-2019-13417 | floragunn Search Guard 信息泄露漏洞 — Search GuardCWE-863 | 5.3 | - | 2019-08-12 |
This page lists every published CVE security advisory associated with floragunn. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.