sangfor CVE Vulnerabilities & Metrics

Focus on sangfor vulnerabilities and metrics.

Last updated: 07 Jun 2025, 22:25 UTC

About sangfor Security Exposure

This page consolidates all known Common Vulnerabilities and Exposures (CVEs) associated with sangfor. We track both calendar-based metrics (using fixed periods) and rolling metrics (using gliding windows) to give you a comprehensive view of security trends and risk evolution. Use these insights to assess risk and plan your patching strategy.

For a broader perspective on cybersecurity threats, explore the comprehensive list of CVEs by vendor and product. Stay updated on critical vulnerabilities affecting major software and hardware providers.

Global CVE Overview

Total sangfor CVEs: 7
Earliest CVE date: 26 Feb 2022, 22:15 UTC
Latest CVE date: 24 May 2025, 17:15 UTC

Latest CVE reference: CVE-2025-5129

Rolling Stats

30-day Count (Rolling): 1
365-day Count (Rolling): 1

Calendar-based Variation

Calendar-based Variation compares a fixed calendar period (e.g., this month versus the same month last year), while Rolling Growth Rate uses a continuous window (e.g., last 30 days versus the previous 30 days) to capture trends independent of calendar boundaries.

Variations & Growth

Month Variation (Calendar): 0%
Year Variation (Calendar): -80.0%

Month Growth Rate (30-day Rolling): 0.0%
Year Growth Rate (365-day Rolling): -80.0%

Monthly CVE Trends (current vs previous Year)

Annual CVE Trends (Last 20 Years)

Critical sangfor CVEs (CVSS ≥ 9) Over 20 Years

CVSS Stats

Average CVSS: 1.16

Max CVSS: 6.0

Critical CVEs (≥9): 0

CVSS Range vs. Count

Range Count
0.0-3.9 6
4.0-6.9 1
7.0-8.9 0
9.0-10.0 0

CVSS Distribution Chart

Top 5 Highest CVSS sangfor CVEs

These are the five CVEs with the highest CVSS scores for sangfor, sorted by severity first and recency.

All CVEs for sangfor

CVE-2025-5129 sangfor vulnerability CVSS: 6.0 24 May 2025, 17:15 UTC

A vulnerability has been found in Sangfor 零信任访问控制系统 aTrust 2.3.10.60 and classified as critical. Affected by this vulnerability is an unknown functionality in the library MSASN1.dll. The manipulation leads to uncontrolled search path. Local access is required to approach this attack. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2023-30806 sangfor vulnerability CVSS: 0 10 Oct 2023, 15:15 UTC

The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an operating system command injection vulnerability. A remote and unauthenticated attacker can execute arbitrary commands by sending a crafted HTTP POST request to the /cgi-bin/login.cgi endpoint. This is due to mishandling of shell meta-characters in the PHPSESSID cookie.

CVE-2023-30805 sangfor vulnerability CVSS: 0 10 Oct 2023, 15:15 UTC

The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an operating system command injection vulnerability. A remote and unauthenticated attacker can execute arbitrary commands by sending a crafted HTTP POST request to the /LogInOut.php endpoint. This is due to mishandling of shell meta-characters in the "un" parameter.

CVE-2023-30804 sangfor vulnerability CVSS: 0 10 Oct 2023, 15:15 UTC

The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an authenticated file disclosure vulnerability. A remote and authenticated attacker can read arbitrary system files using the svpn_html/loadfile.php endpoint. This issue is exploitable by a remote and unauthenticated attacker when paired with CVE-2023-30803.

CVE-2023-30803 sangfor vulnerability CVSS: 0 10 Oct 2023, 15:15 UTC

The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an authentication bypass vulnerability. A remote and unauthenticated attacker can bypass authentication and access administrative functionality by sending HTTP requests using a crafted Y-forwarded-for header.

CVE-2023-30802 sangfor vulnerability CVSS: 0 10 Oct 2023, 15:15 UTC

The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to a source code disclosure vulnerability. A remote and unauthenticated attacker can obtain PHP source code by sending an HTTP request with an invalid Content-Length field.

CVE-2022-22908 sangfor vulnerability CVSS: 2.1 26 Feb 2022, 22:15 UTC

SangforCSClient.exe in Sangfor VDI Client 5.4.2.1006 allows attackers, when they are able to read process memory, to discover the contents of the Username and Password fields.