Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

simstudioai — Vulnerabilities & Security Advisories 10

Browse all 10 CVE security advisories affecting simstudioai. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SimStudioAI develops simulation software for engineering and design applications, with 10 CVEs recorded to date. Historically, vulnerabilities have included remote code execution, cross-site scripting, and privilege escalation, often stemming from input validation flaws and insecure API endpoints. The platform's complex architecture and third-party integrations have contributed to security challenges, though no major public incidents have been documented. Recent updates show improved security practices, but the high-impact nature of past vulnerabilities remains notable. The software's role in critical infrastructure makes its security posture particularly relevant, with ongoing efforts to address legacy issues while maintaining functionality for enterprise clients.

Top products by simstudioai: sim
CVE IDTitleCVSSSeverityPublished
CVE-2026-3432 Sim Studio AI - Unauthenticated OAuth Token Theft — simCWE-862 7.5AIHighAI2026-03-02
CVE-2026-3431 Sim Studio AI - MongoDB SSRF and Arbitrary Document Deletion — simCWE-862 9.8 Critical2026-03-02
CVE-2025-15099 simstudioai sim CRON Secret internal.ts improper authentication — simCWE-287 7.3 High2025-12-26
CVE-2025-10097 SimStudioAI sim route.ts code injection — simCWE-94 6.3 Medium2025-09-08
CVE-2025-10096 SimStudioAI sim route.ts server-side request forgery — simCWE-918 6.3 Medium2025-09-08
CVE-2025-9805 SimStudioAI sim route.ts server-side request forgery — simCWE-918 6.3 Medium2025-09-02
CVE-2025-9801 SimStudioAI sim path traversal — simCWE-22 5.4 Medium2025-09-01
CVE-2025-9800 SimStudioAI sim HTML File route.ts import unrestricted upload — simCWE-434 6.3 Medium2025-09-01
CVE-2025-7114 SimStudioAI sim Session route.ts POST missing authentication — simCWE-306 7.3 High2025-07-07
CVE-2025-7107 SimStudioAI sim route.ts handleLocalFile path traversal — simCWE-22 5.3 Medium2025-07-07

This page lists every published CVE security advisory associated with simstudioai. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.