aEnrich
Security Scorecard
Score
18D
Total CVEs
1,466
Patch Rate
20%
286 patched
Avg Response
97d
days to patch
Critical Gaps
39
exploitable, no detection
Severity Breakdown
Critical27
High195
Medium606
Low28
Patch Status
Patched286 (20%)
Partial/Workaround22 (2%)
Unpatched1158 (79%)
CVEs (1,596)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2025-13765 | aEnrich HR Token Forgery | MEDIUM | 4.3 | 18d | Patched |
| CVE-2025-45311 | aEnrich Auth Bypass | HIGH | 8.8 | 17d | Unpatched |
| CVE-2025-66028 | OneUptime Privilege Escalation | HIGH | 8.2 | - | Patched |
| CVE-2025-65966 | OneUptime API Bypass | HIGH | 8.1 | 17d | Patched |
| CVE-2025-9557 | aEnrich Auth Bypass | HIGH | 7.6 | 17d | Unpatched |
| CVE-2025-9558 | aEnrich Auth Bypass | HIGH | 7.6 | 17d | Unpatched |
| CVE-2025-46174 | Ruoyi v4.8.0 Incorrect Access Control Vulnerability | HIGH | 7.5 | 17d | Unpatched |
| CVE-2025-65672 | ClassroomIO IDOR Exploit | HIGH | 7.5 | 17d | Unpatched |
| CVE-2025-13735 | ASR Lapwing_Linux Vulnerability | HIGH | 7.4 | 17d | Unpatched |
| CVE-2025-66025 | Caido Audit Tool Vulnerability | MEDIUM | 4.3 | 19d | Patched |