Browse all 13 CVE security advisories affecting runZero. AI-powered Chinese analysis, POCs, and references for each vulnerability.
runZero provides attack surface discovery and IT asset management solutions, helping organizations identify and manage their connected assets. Historically, vulnerabilities in runZero products have included remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws. The platform has recorded 13 CVEs, with several critical RCE issues allowing unauthorized access to systems. While no major public security incidents have been widely reported, the consistent discovery of vulnerabilities highlights the importance of regular updates and proper configuration in maintaining security for organizations using runZero's attack surface management tools.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-5383 | runZero Explorer missing authorization check — ExplorerCWE-863 | 4.4 | Medium | 2026-04-07 |
This page lists every published CVE security advisory associated with runZero. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.