Every CVE whose affected-product data names Cbot Cbot Panel, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2023-2882 — CVSS 9.8 (critical): Generation of Incorrect Security Tokens vulnerability in CBOT Chatbot allows Token Impersonation, Privilege Abuse. This issue affects…
CVE-2023-2884 — CVSS 9.8 (critical): Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG), Use of Insufficiently Random Values vulnerability in CBOT Chatbot…
CVE-2023-2887 — CVSS 9.8 (critical): Authentication Bypass by Spoofing vulnerability in CBOT Chatbot allows Authentication Bypass. This issue affects Chatbot: before Core…
CVE-2023-2883 — CVSS 8.8 (high): Authorization Bypass Through User-Controlled Key vulnerability in CBOT Chatbot allows Authentication Abuse, Authentication Bypass. This…
CVE-2023-2885 — CVSS 8.1 (high): Improper Enforcement of Message Integrity During Transmission in a Communication Channel vulnerability in CBOT Chatbot allows Adversary in…
CVE-2023-2886 — CVSS 4.3 (medium): Missing Origin Validation in WebSockets vulnerability in CBOT Chatbot allows Content Spoofing Via Application API Manipulation. This issue…