2 matches found
CVE-2026-31923
CVE-2026-31923 affects Apache APISIX (0.7–3.15.0) due to openid-connect plugin tls_verify/ssl_verify being disabled by default, enabling cleartext transmission of sensitive information. The CVSSv3.1 base score is 7.5 (Network attack, Low attack complexity, no privileges or user interaction, Confi...
CVE-2026-31923
creationtimestamp| type| source ---|---|--- 2026-04-14 03:25:48+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mjggnw57f22e 2026-04-14 12:02:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjhdk6ksra2a 2026-04-14 21:25:30+00:00| published-proof-of-concept|...