Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:31 a.m.10 views

CVE-2023-25569

Apollo is a configuration management system. Prior to version 2.1.0, a low-privileged user can create a special web page. If an authenticated portal admin visits this page, the page can silently send a request to assign new roles for that user without any confirmation from the Portal admin. Cooki...

5.7CVSS6.6AI score0.00351EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:1 a.m.10 views

CVE-2023-25570

Apollo is a configuration management system. Prior to version 2.1.0, there are potential security issues if users expose apollo-configservice to the internet, which is not recommended. This is because there is no authentication feature enabled for the built-in eureka service. Malicious hackers ma...

7.5CVSS7.2AI score0.00823EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/08/20 12:0 a.m.4 views

Apollo 安全漏洞

Apollo is an Apollo open source configuration management system. A security vulnerability exists in Apollo version 2.3.0, which stems from a privilege check bypass issue in the Synchronized Configuration feature...

4.3CVSS6.7AI score0.00349EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2023/02/20 3:22 p.m.7 views

CVE-2023-25570 Apollo has potential access control security issue in eureka

Apollo is a configuration management system. Prior to version 2.1.0, there are potential security issues if users expose apollo-configservice to the internet, which is not recommended. This is because there is no authentication feature enabled for the built-in eureka service. Malicious hackers ma...

7.5CVSS7.9AI score0.00823EPSS
Exploits0References4
Rows per page
Query Builder