cbcvebase.

Artbees Jupiterx Core vulnerabilities

9 known vulnerabilities affecting artbees/jupiterx_core.

Total CVEs
9
CISA KEV
0
Public exploits
0
Exploited in wild
1
Severity breakdown
CRITICAL2HIGH4MEDIUM3

Vulnerabilities

Page 1 of 1
CVE-2023-38389P2CRITICALCVSS 9.8Exploited≥ n/a, ≤ 3.3.82024-06-21
CVE-2023-38389 [CRITICAL] CWE-863 CVE-2023-38389: Incorrect Authorization vulnerability in Artbees JupiterX Core allows Accessing Functionality Not Pr Incorrect Authorization vulnerability in Artbees JupiterX Core allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects JupiterX Core: from n/a through 3.3.8.
nvd
CVE-2023-38388P2CRITICALCVSS 9.8≥ n/a, ≤ 3.3.52024-03-26
CVE-2023-38388 [CRITICAL] CWE-434 CVE-2023-38388: Unrestricted Upload of File with Dangerous Type vulnerability in Artbees JupiterX Core.This issue af Unrestricted Upload of File with Dangerous Type vulnerability in Artbees JupiterX Core.This issue affects JupiterX Core: from n/a through 3.3.5.
nvd
CVE-2025-50004P3HIGHCVSS 8.8≤ 4.10.12026-01-22
CVE-2025-50004 [HIGH] CWE-502 CVE-2025-50004: Deserialization of Untrusted Data vulnerability in artbees JupiterX Core jupiterx-core allows Object Deserialization of Untrusted Data vulnerability in artbees JupiterX Core jupiterx-core allows Object Injection.This issue affects JupiterX Core: from n/a through <= 4.10.1.
nvd
CVE-2023-38385P3HIGHCVSS 8.8≥ 3.0.0, ≤ 3.3.02024-12-13
CVE-2023-38385 [HIGH] CWE-862 CVE-2023-38385: Missing Authorization vulnerability in Artbees JupiterX Core allows Exploiting Incorrectly Configure Missing Authorization vulnerability in Artbees JupiterX Core allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JupiterX Core: from 3.0.0 through 3.3.0.
nvd
CVE-2023-38394P3HIGHCVSS 8.8≥ 3.0.0, ≤ 3.3.02024-06-19
CVE-2023-38394 [HIGH] CWE-862 CVE-2023-38394: Missing Authorization vulnerability in Artbees JupiterX Core.This issue affects JupiterX Core: from Missing Authorization vulnerability in Artbees JupiterX Core.This issue affects JupiterX Core: from 3.0.0 through 3.3.0.
nvd
CVE-2026-39490P3HIGHCVSS 7.5≥ n/a, ≤ 4.14.12026-06-16
CVE-2026-39490 [HIGH] CWE-862 CVE-2026-39490: Unauthenticated Broken Access Control in JupiterX Core <= 4.14.1 versions. Unauthenticated Broken Access Control in JupiterX Core <= 4.14.1 versions.
nvd
CVE-2026-39491P4MEDIUMCVSS 6.5≥ n/a, ≤ 4.14.12026-06-15
CVE-2026-39491 [MEDIUM] CWE-79 CVE-2026-39491: Subscriber Cross Site Scripting (XSS) in JupiterX Core <= 4.14.1 versions. Subscriber Cross Site Scripting (XSS) in JupiterX Core <= 4.14.1 versions.
nvd
CVE-2025-58264P4MEDIUMCVSS 6.5≤ 4.11.02025-09-22
CVE-2025-58264 [MEDIUM] CWE-79 CVE-2025-58264: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in artbees JupiterX Core jupiterx-core allows Stored XSS.This issue affects JupiterX Core: from n/a through <= 4.11.0.
nvd
CVE-2025-47475P4MEDIUMCVSS 6.5≤ 4.8.112025-05-07
CVE-2025-47475 [MEDIUM] CWE-79 CVE-2025-47475: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in artbees JupiterX Core jupiterx-core allows Stored XSS.This issue affects JupiterX Core: from n/a through <= 4.8.11.
nvd
Artbees Jupiterx Core vulnerabilities | cvebase