Browse all 7 CVE security advisories affecting man-group. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Man-group develops enterprise software for financial services, with a core use case in risk management and trading platforms. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and misconfigured access controls. Notable security characteristics include multiple CVEs related to authentication bypass flaws and insecure data handling. While no major public incidents have been widely reported, the consistent pattern of vulnerabilities in their web applications and APIs suggests ongoing challenges in secure coding practices. Their CVE history reflects typical issues in financial software, where security flaws can have significant operational and financial impacts.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-35052 | D-Tale affected by Remote Code Execution through redis/shelf storage — dtaleCWE-79 | 9.8AI | CriticalAI | 2026-04-06 |
| CVE-2026-27194 | D-Tale affected by Remote Code Execution through the /save-column-filter endpoint — dtaleCWE-74 | 9.8 | - | 2026-02-21 |
| CVE-2024-55890 | D-Tale allows Remote Code Execution through the Custom Filter Input — dtaleCWE-79 | 9.8 | - | 2024-12-13 |
| CVE-2024-45595 | D-Tale allows Remote Code Execution through the Query input on Chart Builder — dtaleCWE-79 | 6.1 | Medium | 2024-09-10 |
| CVE-2024-3408 | Authentication Bypass and RCE in man-group/dtale — man-group/dtaleCWE-798 | 9.8AI | CriticalAI | 2024-06-06 |
| CVE-2024-21642 | D-Tale server-side request forgery through Web uploads — dtaleCWE-918 | 7.5 | High | 2024-01-05 |
| CVE-2023-46134 | D-Tale vulnerable to Remote Code Execution through the Custom Filter Input — dtaleCWE-79 | 6.1 | Medium | 2023-10-25 |
This page lists every published CVE security advisory associated with man-group. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.