CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A server-side request forgery SSRF was discovered in the Akana API Platform in versions prior to and including 2022.1.3. Reported by Jakob Antonsson...

9.3CVSS6.9AI score0.00378EPSS

Exploits0References1

NVD•added 2024/07/30 7:15 p.m.•18 views

CVE-2024-5250

In versions of Akana API Platform prior to 2024.1.0 overly verbose errors can be found in SAML integrations...

5.3CVSS0.00494EPSS

Exploits0References1

OSV•added 2024/07/30 7:15 p.m.•2 views

CVE-2024-5249

In versions of Akana API Platform prior to 2024.1.0, SAML tokens can be replayed...

7.5CVSS5.8AI score0.00258EPSS

Exploits0References1

NVD•added 2024/07/30 7:15 p.m.•20 views

CVE-2024-5249

In versions of Akana API Platform prior to 2024.1.0, SAML tokens can be replayed...

7.5CVSS0.00258EPSS

Exploits0References1

OSV•added 2024/07/30 7:15 p.m.•2 views

CVE-2024-5250

In versions of Akana API Platform prior to 2024.1.0 overly verbose errors can be found in SAML integrations...

5.3CVSS5.7AI score

Exploits0References1

NVD•added 2024/07/30 7:15 p.m.•18 views

CVE-2024-3930

In versions of Akana API Platform prior to 2024.1.0 a flaw resulting in XML External Entity XXE was discovered...

9.8CVSS0.0011EPSS

Exploits0References1

OSV•added 2024/07/30 7:15 p.m.•1 views

CVE-2024-3930

In versions of Akana API Platform prior to 2024.1.0 a flaw resulting in XML External Entity XXE was discovered...

9.8CVSS5.8AI score

Exploits0References1

Vulnrichment•added 2024/07/30 6:36 p.m.•18 views

CVE-2024-3930 XML External Entity in Akana

In versions of Akana API Platform prior to 2024.1.0 a flaw resulting in XML External Entity XXE was discovered...

6.3CVSS6.7AI score0.0011EPSS

Exploits0References1

CVE•added 2024/07/30 6:36 p.m.•83 views

CVE-2024-3930

CVE-2024-3930 is an XML External Entity (XXE) vulnerability in Akana API Platform prior to 2024.1.0. The NVD entry cites CVSS v3.1: Base score 9.8 (CRITICAL) with network attack vector, no privileges or user interaction required, and impacts to confidentiality, integrity, and availability. Other ...

9.8CVSS6.2AI score0.0011EPSS

Exploits0References1Affected Software1

Cvelist•added 2024/07/30 6:36 p.m.•24 views

CVE-2024-3930 XML External Entity in Akana

In versions of Akana API Platform prior to 2024.1.0 a flaw resulting in XML External Entity XXE was discovered...

6.3CVSS0.0011EPSS

Exploits0References1

Vulnrichment•added 2024/07/30 6:29 p.m.•15 views

CVE-2024-5250 Overly Verbose Errors in SAML Integration

In versions of Akana API Platform prior to 2024.1.0 overly verbose errors can be found in SAML integrations...

3.5CVSS6.8AI score0.00494EPSS

Exploits0References1

CVE•added 2024/07/30 6:29 p.m.•76 views

CVE-2024-5250

CVE-2024-5250 affects Akana API Platform versions prior to 2024.1.0, where SAML integration error messages are overly verbose. The issue is documented across multiple feeds (NVD/Red Hat/Son to ENISA and PT Security) and centers on verbose SAML error reporting rather than a runtime compromise vect...

5.3CVSS4AI score0.00494EPSS

Exploits0References1Affected Software1

Cvelist•added 2024/07/30 6:29 p.m.•18 views

CVE-2024-5250 Overly Verbose Errors in SAML Integration

In versions of Akana API Platform prior to 2024.1.0 overly verbose errors can be found in SAML integrations...

3.5CVSS0.00494EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by