VYPR

Vendor CVEs

Sangfor

All CVEs

24 total · sorted by risk
  • CVE-2025-34041CriJun 24, 2025
    risk 0.65cvss epss 0.07

    An OS command injection vulnerability exists in the Chinese versions of Sangfor Endpoint Detection and Response (EDR) management platform versions 3.2.16, 3.2.17, and 3.2.19. The vulnerability allows unauthenticated attackers to construct and send malicious HTTP requests to the…

  • CVE-2023-7307HigAug 27, 2025
    risk 0.57cvss epss 0.00

    Sangfor Behavior Management System (also referred to as DC Management System in Chinese-language documentation) contains an XML external entity (XXE) injection vulnerability in the /src/sangforindex endpoint. A remote unauthenticated attacker can submit crafted XML data…

  • CVE-2025-15503HigJan 10, 2026
    risk 0.48cvss 7.3epss 0.02

    A security flaw has been discovered in Sangfor Operation and Maintenance Management System up to 3.0.8. The impacted element is an unknown function of the file /fort/trust/version/common/common.jsp. Performing a manipulation of the argument File results in unrestricted upload.…

  • CVE-2026-1412HigJan 26, 2026
    risk 0.47cvss 7.3epss 0.04

    A vulnerability has been found in Sangfor Operation and Maintenance Security Management System up to 3.0.12. The impacted element is an unknown function of the file /fort/audit/get_clip_img of the component HTTP POST Request Handler. Such manipulation of the argument frame/dirno…

  • CVE-2025-15502HigJan 10, 2026
    risk 0.47cvss 7.3epss 0.06

    A vulnerability was identified in Sangfor Operation and Maintenance Management System up to 3.0.8. The affected element is the function SessionController of the file /isomp-protocol/protocol/session. Such manipulation of the argument Hostname leads to os command injection. The…

  • CVE-2026-1414MedJan 26, 2026
    risk 0.41cvss 6.3epss 0.04

    A vulnerability was determined in Sangfor Operation and Maintenance Security Management System up to 3.0.12. This impacts the function getInformation of the file /equipment/get_Information of the component HTTP POST Request Handler. Executing a manipulation of the argument…

  • CVE-2026-1413MedJan 26, 2026
    risk 0.41cvss 6.3epss 0.03

    A vulnerability was found in Sangfor Operation and Maintenance Security Management System up to 3.0.12. This affects the function portValidate of the file /fort/ip_and_port/port_validate of the component HTTP POST Request Handler. Performing a manipulation of the argument port…

  • CVE-2025-12916MedNov 9, 2025
    risk 0.41cvss 6.3epss 0.05

    A vulnerability was determined in Sangfor Operation and Maintenance Security Management System 3.0. Impacted is an unknown function of the file /fort/portal_login of the component Frontend. This manipulation of the argument loginUrl causes command injection. The attack may be…

  • CVE-2025-52923MedJun 22, 2025
    risk 0.28cvss 4.3epss 0.00

    Sangfor aTrust through 2.4.10 allows users to modify the ExecStartPre command.

  • CVE-2023-30806Oct 10, 2023
    risk 0.01cvss epss 0.66

    The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an operating system command injection vulnerability. A remote and unauthenticated attacker can execute arbitrary commands by sending a crafted HTTP POST request to the /cgi-bin/login.cgi endpoint. This…

  • CVE-2023-30805Oct 10, 2023
    risk 0.01cvss epss 0.66

    The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an operating system command injection vulnerability. A remote and unauthenticated attacker can execute arbitrary commands by sending a crafted HTTP POST request to the /LogInOut.php endpoint. This is…

  • CVE-2026-1325Jan 22, 2026
    risk 0.00cvss epss 0.01

    A security flaw has been discovered in Sangfor Operation and Maintenance Security Management System up to 3.0.12. This affects the function edit_pwd_mall of the file /fort/login/edit_pwd_mall. The manipulation of the argument flag results in weak password recovery. It is…

  • CVE-2026-1324Jan 22, 2026
    risk 0.00cvss epss 0.06

    A vulnerability was identified in Sangfor Operation and Maintenance Management System up to 3.0.12. Affected by this issue is the function SessionController of the file /isomp-protocol/protocol/session of the component SSH Protocol Handler. The manipulation of the argument…

  • CVE-2025-15501Jan 9, 2026
    risk 0.00cvss epss 0.06

    A vulnerability was determined in Sangfor Operation and Maintenance Management System up to 3.0.8. Impacted is the function WriterHandle.getCmd of the file /isomp-protocol/protocol/getCmd. This manipulation of the argument sessionPath causes os command injection. Remote…

  • CVE-2025-15500Jan 9, 2026
    risk 0.00cvss epss 0.06

    A vulnerability was found in Sangfor Operation and Maintenance Management System up to 3.0.8. This issue affects some unknown processing of the file /isomp-protocol/protocol/getHis of the component HTTP POST Request Handler. The manipulation of the argument sessionPath results…

  • CVE-2025-15499Jan 9, 2026
    risk 0.00cvss epss 0.05

    A vulnerability has been found in Sangfor Operation and Maintenance Management System up to 3.0.8. This vulnerability affects the function uploadCN of the file VersionController.java. The manipulation of the argument filename leads to os command injection. The attack may be…

  • CVE-2025-5129May 24, 2025
    risk 0.00cvss epss 0.00

    A vulnerability has been found in Sangfor 零信任访问控制系统 aTrust 2.3.10.60 and classified as critical. Affected by this vulnerability is an unknown functionality in the library MSASN1.dll. The manipulation leads to uncontrolled search path. Local access is required…

  • CVE-2023-30804Oct 10, 2023
    risk 0.00cvss epss 0.13

    The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an authenticated file disclosure vulnerability. A remote and authenticated attacker can read arbitrary system files using the svpn_html/loadfile.php endpoint. This issue is exploitable by a remote and…

  • CVE-2023-30803Oct 10, 2023
    risk 0.00cvss epss 0.18

    The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an authentication bypass vulnerability. A remote and unauthenticated attacker can bypass authentication and access administrative functionality by sending HTTP requests using a crafted Y-forwarded-for…

  • CVE-2023-30802Oct 10, 2023
    risk 0.00cvss epss 0.01

    The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to a source code disclosure vulnerability. A remote and unauthenticated attacker can obtain PHP source code by sending an HTTP request with an invalid Content-Length field.

  • CVE-2022-22908Feb 26, 2022
    risk 0.00cvss epss 0.00

    SangforCSClient.exe in Sangfor VDI Client 5.4.2.1006 allows attackers, when they are able to read process memory, to discover the contents of the Username and Password fields.

  • CVE-2019-19547Jan 13, 2020
    risk 0.00cvss epss 0.01

    Symantec Endpoint Detection and Response (SEDR), prior to 4.3.0, may be susceptible to a cross site scripting (XSS) issue. XSS is a type of issue that can enable attackers to inject client-side scripts into web pages viewed by other users. An XSS vulnerability may be used by…

  • CVE-2019-9161Apr 18, 2019
    risk 0.00cvss epss 0.05

    WAC on the Sangfor Sundray WLAN Controller version 3.7.4.2 and earlier has a Remote Code Execution issue allowing remote attackers to achieve full access to the system, because shell metacharacters in the nginx_webconsole.php Cookie header can be used to read an…

  • CVE-2019-9160Apr 18, 2019
    risk 0.00cvss epss 0.03

    WAC on the Sangfor Sundray WLAN Controller version 3.7.4.2 and earlier has a backdoor account allowing a remote attacker to login to the system via SSH (on TCP port 22345) and escalate to root (because the password for root is the WebUI admin password concatenated with a static…