Browse all 3 CVE security advisories affecting xArrow. AI-powered Chinese analysis, POCs, and references for each vulnerability.
xArrow is a network penetration testing tool designed for security professionals to identify and exploit vulnerabilities in systems. Historically, xArrow has been associated with common vulnerability classes including remote code execution (RCE), cross-site scripting (XSS), and privilege escalation, with three CVEs currently documented. The tool's security characteristics focus on automated exploitation of network-level flaws, though it has not been linked to any major public security incidents. xArrow remains primarily utilized in controlled environments for defensive purposes, allowing organizations to assess their infrastructure's resilience against known attack vectors before malicious actors can exploit similar weaknesses.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2021-33025 | xArrow SCADA Path Traversal — xArrow SCADACWE-79 | 5.6 | Medium | 2022-05-16 |
| CVE-2021-33021 | xArrow SCADA Cross-site Scripting — xArrow SCADACWE-79 | 6.1 | Medium | 2022-05-16 |
| CVE-2021-33001 | xArrow SCADA Cross-site Scripting — xArrow SCADACWE-79 | 6.1 | Medium | 2022-05-16 |
This page lists every published CVE security advisory associated with xArrow. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.