Vulnerabilities > Citeum > Opencti
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-05-05 | CVE-2025-24977 | Code Injection vulnerability in Citeum Opencti 6.4.10/6.4.8/6.4.9 OpenCTI is an open cyber threat intelligence (CTI) platform. | 9.1 |
| 2025-04-30 | CVE-2025-24887 | Violation of Secure Design Principles vulnerability in Citeum Opencti 6.4.10/6.4.9 OpenCTI is an open-source cyber threat intelligence platform. | 6.3 |
| 2024-12-26 | CVE-2024-45805 | Unspecified vulnerability in Citeum Opencti OpenCTI is an open-source cyber threat intelligence platform. | 4.3 |
| 2024-12-12 | CVE-2024-45404 | Improper Restriction of Excessive Authentication Attempts vulnerability in Citeum Opencti OpenCTI is an open-source cyber threat intelligence platform. | 8.1 |
| 2024-11-18 | CVE-2024-37155 | Unspecified vulnerability in Citeum Opencti OpenCTI is an open source platform allowing organizations to manage their cyber threat intelligence knowledge and observables. | 8.2 |
| 2024-05-23 | CVE-2024-26139 | Unspecified vulnerability in Citeum Opencti OpenCTI is an open source platform allowing organizations to manage their cyber threat intelligence knowledge and observables. | 8.1 |
| 2022-07-05 | CVE-2022-30290 | Unspecified vulnerability in Citeum Opencti In OpenCTI through 5.2.4, a broken access control vulnerability has been identified in the profile endpoint. | 7.5 |
| 2022-07-05 | CVE-2022-30289 | Cross-site Scripting vulnerability in Citeum Opencti A stored Cross-site Scripting (XSS) vulnerability was identified in the Data Import functionality of OpenCTI through 5.2.4. | 5.4 |