aEnrich
Security Scorecard
Score
18D
Total CVEs
1,473
Patch Rate
20%
296 patched
Avg Response
99d
days to patch
Critical Gaps
28
exploitable, no detection
Severity Breakdown
Critical27
High199
Medium609
Low28
Patch Status
Patched296 (20%)
Partial/Workaround22 (1%)
Unpatched1155 (78%)
CVEs (1,604)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2025-6571 | aEnrich Auth Bypass | Medium | 6.0 | 34d | Unpatched |
| CVE-2025-63617 | Fastjson Deserialization Vulnerability | Medium | 6.5 | 36d | Unpatched |
| CVE-2025-63709 | aEnrich Token Forgery | Medium | 5.4 | 36d | Unpatched |
| CVE-2025-12922 | OpenClinica RCE | Medium | 6.3 | 36d | Patched |
| CVE-2025-12921 | OpenClinica Community Edition XEE | Medium | 4.3 | 36d | Patched |
| CVE-2025-12927 | DedeBIZ SQL Injection Vulnerability | Medium | 4.7 | 36d | Patched |
| CVE-2025-41001 | aEnrich Auth Bypass | Medium | 5.4 | 36d | Unpatched |
| CVE-2025-12932 | aEnrich HR System Vulnerability | Medium | 4.7 | 36d | Unpatched |
| CVE-2025-12924 | Forest API Bank Controller Vulnerability | Medium | 4.3 | 36d | Unpatched |
| CVE-2025-12933 | aEnrich HR Admin Token Forgery | Medium | 6.3 | 36d | Unpatched |