Browse all 4 CVE security advisories affecting scidsg. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Scidsg primarily develops security testing tools and vulnerability management solutions for organizations. Historically, their products have been associated with multiple remote code execution (RCE) vulnerabilities, cross-site scripting (XSS) flaws, and privilege escalation issues. These vulnerabilities often stem from improper input validation and insufficient access controls. While no major public security incidents have been documented, the presence of four CVEs indicates a pattern of security weaknesses that could potentially allow attackers to compromise systems or escalate privileges. Organizations using Scidsg solutions should ensure timely patching and implement additional security controls to mitigate these risks.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-55888 | Content Security Policy appears to be missing in software and production setup — hushlineCWE-1021 | 7.1 | High | 2024-12-12 |
| CVE-2024-38522 | CSP bypass in Hush Line — hushlineCWE-183 | 6.3 | Medium | 2024-06-28 |
| CVE-2024-38521 | Persistent Cross-Site Scripting (XSS) in hushline inbox — hushlineCWE-79 | 8.8 | High | 2024-06-28 |
| CVE-2024-38523 | Hush Line OTP issue — hushlineCWE-287 | 7.5 | High | 2024-06-27 |
This page lists every published CVE security advisory associated with scidsg. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.