CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1233 matches found

OSV•added 2025/11/06 3:45 p.m.•2 views

GHSA-G8JH-VG5J-4H3F Apollo Router Improperly Enforces Renamed Access Control Directives

Summary A vulnerability in Apollo Router allowed for unauthorized access to protected data through schema elements with access control directives @authenticated, @requiresScopes, and @policy that were renamed via @link imports. Router did not enforce renamed access control directives on schema...

7.5CVSS6.9AI score0.00062EPSS

Exploits0References4

Github Security Blog•added 2025/11/06 3:45 p.m.•5 views

Apollo Router Improperly Enforces Renamed Access Control Directives

7.5CVSS6.9AI score0.00062EPSS

Exploits0References4Affected Software1

CNNVD•added 2025/11/06 12:0 a.m.•3 views

Apollo Router Core 安全漏洞

Apollo Router Core is a router core application for the Apollo community. A security vulnerability exists in Apollo Router Core versions prior to 1.61.11 and versions 2.0.0-alpha.0 through 2.8.1-rc.0, which stems from mishandling of access control commands and could lead to unauthenticated querie...

7.5CVSS6.6AI score0.00049EPSS

Exploits0References3

Positive Technologies•added 2025/11/06 12:0 a.m.•4 views

PT-2025-45381

Name of the Vulnerable Software and Affected Versions Apollo Router Core versions 1.61.12-rc.0 through 1.61.12 and 2.8.1-rc.0 through 2.8.1 Description Apollo Router Core, a Rust graph router for Apollo Federation 2, had a flaw where access control directives—specifically @authenticated,...

7.5CVSS6.7AI score0.00062EPSS

Exploits0References14

Positive Technologies•added 2025/11/06 12:0 a.m.•3 views

PT-2025-45376

Name of the Vulnerable Software and Affected Versions Apollo Router Core versions 1.61.11 and earlier Apollo Router Core versions 2.0.0-alpha.0 through 2.8.1-rc.0 Description Apollo Router Core, a configurable graph router written in Rust for Apollo Federation 2, had an access control issue. The...

7.5CVSS6.8AI score0.00049EPSS

Exploits0References15