Lucene search
K

32 matches found

vulnersOsv
vulnersOsv
added 2022/12/30 10:13 p.m.11 views

io.fabric8.apps:apiman (>=2.2.9.1 <=2.2.19), io.fabric8.apps:distro (>=2.2.7 <=2.2.19) +6 more potentially affected by CVE-2022-36437 via io.apiman:apiman-gateway-platforms-vertx (=1.1.3.CR1)

io.apiman:apiman-gateway-platforms-vertx MAVEN version =1.1.3.CR1 is affected by a known vulnerability. The following packages have a transitive dependency on io.apiman:apiman-gateway-platforms-vertx and may be impacted: - io.fabric8.apps:apiman =2.2.9.1, =2.2.7, =2.2.9.1, =2.2.7, =2.2.7, =2.1.2,...

9.1CVSS7.2AI score0.01021EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2022/12/30 10:13 p.m.29 views

Apiman Vert.x Gateway has Transitive Hazelcast connection caching issue

Impact If you are using the Apiman Vert.x Gateway prior to Apiman 3.0.0.Final, a connection caching issue in Hazelcast could allow an unauthenticated, remote attacker to access and manipulate data in the cluster with another authenticated connection's identity. Hazelcast is a transitive dependenc...

9.1CVSS0.4AI score0.01021EPSS
Exploits0References4Affected Software2
OSV
OSV
added 2022/12/20 12:30 a.m.25 views

GHSA-54R5-WR8X-X5V3 Duplicate Advisory: Apiman has insufficient checks for read permissions

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-j94p-hv25-rm5g. This link is maintained to preserve external references. Original Description Apiman 1.5.7 through 2.2.3.Final has insufficient checks for read permissions within the Apiman Manager REST API. A...

7.1CVSS6.2AI score0.00604EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2022/12/20 12:30 a.m.33 views

Duplicate Advisory: Apiman has insufficient checks for read permissions

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-j94p-hv25-rm5g. This link is maintained to preserve external references. Original Description Apiman 1.5.7 through 2.2.3.Final has insufficient checks for read permissions within the Apiman Manager REST API. A...

6.5CVSS6.8AI score0.00604EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2022/12/20 12:15 a.m.47 views

CVE-2022-47551

Apiman 1.5.7 through 2.2.3.Final has insufficient checks for read permissions within the Apiman Manager REST API. The root cause of the issue is the Apiman project's accidental acceptance of a large contribution that was not fully compatible with the security model of Apiman versions before...

6.5CVSS0.00604EPSS
Exploits0References2
Prion
Prion
added 2022/12/20 12:15 a.m.16 views

Design/Logic Flaw

Apiman 1.5.7 through 2.2.3.Final has insufficient checks for read permissions within the Apiman Manager REST API. The root cause of the issue is the Apiman project's accidental acceptance of a large contribution that was not fully compatible with the security model of Apiman versions before...

4CVSS6.4AI score0.00604EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/12/19 12:0 a.m.49 views

CVE-2022-47551

Apiman 1.5.7 through 2.2.3.Final has insufficient checks for read permissions within the Apiman Manager REST API. The root cause of the issue is the Apiman project's accidental acceptance of a large contribution that was not fully compatible with the security model of Apiman versions before...

6.6AI score0.00604EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/12/19 12:0 a.m.29 views

Apiman 安全漏洞

Apiman is Apiman Open Source, a flexible open source API management platform for enterprise users. A security vulnerability exists in Apiman versions 1.5.7 through 2.2.3.Final, which stems from insufficient checking of read permissions in the Apiman Manager REST API...

6.5CVSS6.4AI score0.00604EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2022/12/19 12:0 a.m.7 views

CVE-2022-47551

Apiman 1.5.7 through 2.2.3.Final has insufficient checks for read permissions within the Apiman Manager REST API. The root cause of the issue is the Apiman project's accidental acceptance of a large contribution that was not fully compatible with the security model of Apiman versions before...

6.7AI score0.00604EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/12/19 12:0 a.m.4 views

PT-2022-28075 · Apiman · Apiman

Name of the Vulnerable Software and Affected Versions: Apiman versions 1.5.7 through 2.2.3.Final Description: The issue is caused by insufficient checks for read permissions within the Apiman Manager REST API, allowing a malicious user to access private APIs they do not have permission for. This ...

7.1CVSS6AI score0.00604EPSS
Exploits0References12
OSV
OSV
added 2022/12/19 12:0 a.m.17 views

CVE-2022-47551

Apiman 1.5.7 through 2.2.3.Final has insufficient checks for read permissions within the Apiman Manager REST API. The root cause of the issue is the Apiman project's accidental acceptance of a large contribution that was not fully compatible with the security model of Apiman versions before...

6.5CVSS6.4AI score0.00604EPSS
Exploits0References4
CVE
CVE
added 2022/12/19 12:0 a.m.83 views

CVE-2022-47551

CVE-2022-47551 affects Apiman 1.5.7 through 2.2.3.Final, with insufficient checks for read permissions in the Apiman Manager REST API. Root cause is the project’s accidental acceptance of a large contribution not fully compatible with the security model prior to 3.0.0.Final, and versions from 3.0...

6.5CVSS6.3AI score0.00604EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder