Sureness
1 CVEs
product
Monthly
Dromara Sureness before v1.0.8 was discovered to use a hardcoded key. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
Authentication Bypass
Sureness
NVD
GitHub
CVSS 3.1
9.8
EPSS
0.8%
CVE-2023-31581
Maven
EPSS 1%
CVSS 9.8
CRITICAL
POC
PATCH
Act Now
Dromara Sureness before v1.0.8 was discovered to use a hardcoded key. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
Authentication Bypass
Sureness
NVD
GitHub