Browse all 4 CVE security advisories affecting notrinos. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Notrinos is a network security provider specializing in DDoS protection and traffic filtering solutions. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation flaws, with four CVEs documented. Security researchers have identified authentication bypass issues and insecure default configurations in their appliances. While no major public security incidents have been reported, the consistent pattern of vulnerabilities in access controls and input validation suggests potential risks for deployed implementations. Their core functionality as a security gateway makes such flaws particularly concerning, as compromised systems could be leveraged to bypass network defenses or facilitate further attacks.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2022-2965 | Improper Restriction of Rendered UI Layers or Frames in notrinos/notrinoserp — notrinos/notrinoserpCWE-1021 | 4.3 | - | 2022-08-23 |
| CVE-2022-2927 | Weak Password Requirements in notrinos/notrinoserp — notrinos/notrinoserpCWE-521 | 9.8 | - | 2022-08-22 |
| CVE-2022-2921 | Exposure of Private Personal Information to an Unauthorized Actor in notrinos/notrinoserp — notrinos/notrinoserpCWE-359 | 9.8 | - | 2022-08-21 |
| CVE-2022-2871 | Cross-site Scripting (XSS) - Stored in notrinos/notrinoserp — notrinos/notrinoserpCWE-79 | 5.4 | - | 2022-08-17 |
This page lists every published CVE security advisory associated with notrinos. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.