Every CVE whose affected-product data names Intumit Smartrobot, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2024-0552 — CVSS 9.8 (critical): Intumit inc. SmartRobot's web framwork has a remote code execution vulnerability. An unauthorized remote attacker can exploit this…
CVE-2024-2413 — CVSS 9.8 (critical): Intumit SmartRobot uses a fixed encryption key for authentication. Remote attackers can use this key to encrypt a string composed of the…
CVE-2024-12652 — CVSS 8.8 (high): A Improper Control of Generation of Code ('Code Injection') vulnerability in groovy script function in SmartRobot′s Conversational AI…
CVE-2025-3572 — CVSS 7.5 (high): SmartRobot from INTUMIT has a Server-Side Request Forgery vulnerability, allowing unauthenticated remote attackers to probe internal…
CVE-2024-8776 — CVSS 6.1 (medium): SmartRobot from INTUMIT does not properly validate a specific page parameter, allowing unautheticated remote attackers to inject JavaScript…