Digiwin Easyflow Ainet vulnerabilities
2 known vulnerabilities affecting digiwin/easyflow_ainet.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2025-11949P3HIGHCVSS 7.5≤ 8.1.12025-10-21
CVE-2025-11949 [HIGH] CWE-306 CVE-2025-11949: EasyFlow .NET and EasyFlow AiNet, developed by Digiwin, has a Missing Authentication vulnerability,
EasyFlow .NET and EasyFlow AiNet, developed by Digiwin, has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to obtain database administrator credentials via a specific functionality.
nvd
CVE-2025-12503P3MEDIUMCVSS 6.5≤ 8.1.12025-11-03
CVE-2025-12503 [MEDIUM] CWE-89 CVE-2025-12503: EasyFlow .NET and EasyFlow AiNet developed by Digiwin has a SQL Injection vulnerability, allowing au
EasyFlow .NET and EasyFlow AiNet developed by Digiwin has a SQL Injection vulnerability, allowing authenticated remote attackers to inject arbitrary SQL commands to read database contents.
nvd