Vuln
·
Scope
Home
Packages
KEV
Critical
Insights
Jobs
Pricing
EN
中
Loading…
RubyGems/openc3 — 8 CVEs · VulnScope
pkg:RubyGems/
openc3
8 total CVEs
CRITICAL
2
HIGH
1
MEDIUM
5
✅ Check your installed version
Check
All known vulnerabilities
CRITICAL
10.0
CVE-2025-68271
openc3-api Vulnerable to Unauthenticated Remote Code Execution
>= 5.0.6, < 6.10.2
CRITICAL
9.6
CVE-2026-42087
OpenC3 COSMOS has SQL Injection in QuestDB Time-Series Database
>= 6.7.0, < 7.0.0-rc3
HIGH
8.1
CVE-2026-42084
OpenC3 COSMOS: Hijacked session token can be used to reset password for persistence
from 0, < 6.10.5
MEDIUM
6.5
OpenC3 Path Traversal via screen controller (`GHSL-2024-127`)
from 0, < 5.19.0
MEDIUM
6.1
OpenC3 Cross-site Scripting in Login functionality (`GHSL-2024-128`)
from 0, < 5.19.0
MEDIUM
5.9
OpenC3 stores passwords in clear text (`GHSL-2024-129`)
from 0, < 5.19.0
MEDIUM
4.6
OpenC3 COSMOS is Vulnerable to Self-XSS Through the Command Sender
from 0, < 7.0.0
MEDIUM
4.3
OpenC3 COSMOS allows arbitrary writes to plugins directory via path-traversed config filenames
from 0, < 6.10.5
CVE-2024-46977
CVE-2024-43795
CVE-2024-47529
CVE-2026-42086
CVE-2026-42085