ApolloTheme AP Page Builder 路径遍历漏洞

ApolloTheme AP Page Builder is a plugin from ApolloTheme, Inc. A path traversal vulnerability exists in ApolloTheme AP Page Builder versions prior to 4.0.0, which stems from an unauthenticated remote user being able to modify the productitempath in the config JSON file, which could result in...

GMOD Apollo Missing Authentication For Critical Function (CVE-2025-24924)

Binary data gmodapollocve-2025-24924.nbin...

GMOD Apollo Detection

Binary data gmodapollodetect.nbin...

Ribbon Communications Apollo 9608 信任管理问题漏洞

The Ribbon Communications Apollo 9608 is a Session Border Controller SBC from Ribbon Communications, Inc. that is used to protect and manage network traffic for real-time communications such as VoIP. A trust management issue vulnerability exists in the Ribbon Communications Apollo 9608 v9.6R3...

Ribbon Communications Apollo 9608 安全漏洞

Ribbon Communications Apollo 9608 is a Session Border Controller SBC from Ribbon Communications, USA, used to protect and manage network traffic for real-time communications such as VoIP. A security vulnerability exists in Ribbon Communications Apollo 9608 version v9.6R3 that originates from...

Ribbon Communications Apollo 9608 安全漏洞

Ribbon Communications Apollo 9608 is a Session Border Controller SBC from Ribbon Communications, USA, used to protect and manage network traffic for real-time communications such as VoIP. A security vulnerability exists in Ribbon Communications Apollo 9608 version v9.6R3 that originates from...

Ribbon Communications Apollo 9608 代码问题漏洞

Ribbon Communications Apollo 9608 is a Session Border Controller SBC from Ribbon Communications, Inc. that is used to protect and manage network traffic for real-time communications such as VoIP. A code issue vulnerability exists in Ribbon Communications Apollo 9608 version v9.6R3, which stems fr...

Ribbon Communications Apollo 9608 安全漏洞

Ribbon Communications Apollo 9608 is a Session Border Controller SBC from Ribbon Communications, USA, used to protect and manage network traffic for real-time communications such as VoIP. A security vulnerability exists in Ribbon Communications Apollo 9608 version v9.6R3, which stems from...

PT-2025-18182 · Ribbon Communications · Apollo 9608

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue is related to improper restriction of communication channels to intended endpoints. Recommendations: At the moment, there is no information about a newer version that contains a fi...

PT-2025-18189 · Ribbon Communications · Apollo 9608

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue is related to execution with unnecessary privileges. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability...

PT-2025-18188 · Ribbon Communications · Apollo 9608

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue is related to execution with unnecessary privileges, as described by CWE-250. No additional details are provided about the nature of the issue, affected devices, or real-world...

Denial Of Service (DoS)

@apollo/gateway is vulnerable to a Denial Of Service DoS. The vulnerability is due to inefficient query planning due to internal optimizations being bypassed when processing deeply nested and reused named fragments...

Denial Of Service (DoS)

Apollo Gateway is vulnerable to a Denial of Service DoS. The vulnerability is due to inefficient query planning due to deeply nested and reused named fragments that cause excessive resource consumption during named fragment expansion...

CVE-2025-32380

The Apollo Router Core is a configurable, high-performance graph router written in Rust to run a federated supergraph that uses Apollo Federation 2. A vulnerability in Apollo Router's usage of Apollo Compiler allowed queries with deeply nested and reused named fragments to be prohibitively...

CVE-2025-32032

The Apollo Router Core is a configurable, high-performance graph router written in Rust to run a federated supergraph that uses Apollo Federation 2. A vulnerability in Apollo Router allowed queries with deeply nested and reused named fragments to be prohibitively expensive to query plan,...

CVE-2025-32034

The Apollo Router Core is a configurable, high-performance graph router written in Rust to run a federated supergraph that uses Apollo Federation 2. Prior to 1.61.2 and 2.1.1, a vulnerability in Apollo Router allowed queries with deeply nested and reused named fragments to be prohibitively...

CVE-2025-32030

Apollo Gateway provides utilities for combining multiple GraphQL microservices into a single GraphQL endpoint. Prior to 2.10.1, a vulnerability in Apollo Gateway allowed queries with deeply nested and reused named fragments to be prohibitively expensive to query plan, specifically during named...

CVE-2025-32031

Apollo Gateway provides utilities for combining multiple GraphQL microservices into a single GraphQL endpoint. Prior to 2.10.1, a vulnerability in Apollo Gateway allowed queries with deeply nested and reused named fragments to be prohibitively expensive to query plan, specifically due to internal...

CVE-2025-32033

The Apollo Router Core is a configurable, high-performance graph router written in Rust to run a federated supergraph that uses Apollo Federation 2. Prior to 1.61.2 and 2.1.1, the operation limits plugin uses unsigned 32-bit integers to track limit counters e.g. for a query's height. If a counter...

CVE-2025-31496

apollo-compiler is a query-based compiler for the GraphQL query language. Prior to 1.27.0, a vulnerability in Apollo Compiler allowed queries with deeply nested and reused named fragments to be prohibitively expensive to validate. Named fragments were being processed once per fragment spread in...