Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

24 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-17430

Malicious code in bioql PyPI...

5.7CVSS5.8AI score0.0003EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-17429

Malicious code in bioql PyPI...

5.7CVSS5.8AI score0.00048EPSS
Exploits0References4
SUSE CVE
SUSE CVEadded 2025/07/04 2:40 p.m.1 views

SUSE CVE-2025-25207

The Authorino service in the Red Hat Connectivity Link is the authorization service for zero trust API security. Authorino allows the users with developer persona to add callbacks to be executed to HTTP endpoints once the authorization process is completed. It was found that an attacker with...

5.7CVSS6.9AI score0.0003EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2025/07/04 2:40 p.m.0 views

SUSE CVE-2025-25208

A Developer persona can bring down the Authorino service, preventing the evaluation of all AuthPolicies on the cluster...

5.7CVSS7AI score0.00048EPSS
Exploits0References2
CNVD
CNVDadded 2025/06/23 12:0 a.m.1 views

Red Hat Connectivity Link Resource Management Error Vulnerability

Red Hat Connectivity Link is a Kubernetes network connectivity management platform from Red Hat, USA. Red Hat Connectivity Link has a resource management error vulnerability that can be exploited by an attacker to cause the Authorino service to crash...

5.7CVSS7AI score0.00048EPSS
Exploits0References1
OSV
OSVadded 2025/06/10 5:17 p.m.4 views

GO-2025-3746 Authorino Uncontrolled Resource Consumption vulnerability in github.com/kuadrant/authorino

Authorino Uncontrolled Resource Consumption vulnerability in github.com/kuadrant/authorino...

5.7CVSS7.1AI score0.0003EPSS
Exploits0References4
OSV
OSVadded 2025/06/10 5:17 p.m.1 views

GO-2025-3747 Authorino Uncontrolled Resource Consumption vulnerability in github.com/kuadrant/authorino

Authorino Uncontrolled Resource Consumption vulnerability in github.com/kuadrant/authorino...

5.7CVSS7.1AI score0.00048EPSS
Exploits0References4
Veracode
Veracodeadded 2025/06/10 6:3 a.m.2 views

Denial Of Service (DoS)

github.com/kuadrant/authorino is vulnerable to Denial of Service DoS. The vulnerability is due to the lack of limits on post-authorization callbacks, allowing an attacker with developer persona access to overload the service...

5.7CVSS5.4AI score0.0003EPSS
Exploits0References3Affected Software1
Veracode
Veracodeadded 2025/06/10 5:50 a.m.2 views

Denial Of Service (DoS)

github.com/kuadrant/authorino is vulnerable to Denial Of Service DoS. The vulnerability is due to insufficient access control or privilege enforcement, allowing an attacker to disrupt or shut down the Authorino service, blocking the evaluation of all authentication policies on the cluster...

5.7CVSS5.6AI score0.00048EPSS
Exploits0References3Affected Software1
OSV
OSVadded 2025/06/09 6:30 a.m.1 views

GHSA-VQVV-2WJ5-Q34W Authorino Uncontrolled Resource Consumption vulnerability

A Developer persona can bring down the Authorino service, preventing the evaluation of all AuthPolicies on the cluster...

5.7CVSS7.2AI score0.00048EPSS
Exploits0References4
Github Security Blog
Github Security Blogadded 2025/06/09 6:30 a.m.6 views

Authorino Uncontrolled Resource Consumption vulnerability

A Developer persona can bring down the Authorino service, preventing the evaluation of all AuthPolicies on the cluster...

5.7CVSS5.9AI score0.00048EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blogadded 2025/06/09 6:30 a.m.10 views

Authorino Uncontrolled Resource Consumption vulnerability

The Authorino service in the Red Hat Connectivity Link is the authorization service for zero trust API security. Authorino allows the users with developer persona to add callbacks to be executed to HTTP endpoints once the authorization process is completed. It was found that an attacker with...

5.7CVSS6AI score0.0003EPSS
Exploits0References4Affected Software1
OSV
OSVadded 2025/06/09 6:30 a.m.4 views

GHSA-R8XR-PGV5-GXW3 Authorino Uncontrolled Resource Consumption vulnerability

The Authorino service in the Red Hat Connectivity Link is the authorization service for zero trust API security. Authorino allows the users with developer persona to add callbacks to be executed to HTTP endpoints once the authorization process is completed. It was found that an attacker with...

5.7CVSS7.2AI score0.0003EPSS
Exploits0References4
NVD
NVDadded 2025/06/09 6:15 a.m.10 views

CVE-2025-25207

The Authorino service in the Red Hat Connectivity Link is the authorization service for zero trust API security. Authorino allows the users with developer persona to add callbacks to be executed to HTTP endpoints once the authorization process is completed. It was found that an attacker with...

5.7CVSS0.0003EPSS
Exploits0References2
NVD
NVDadded 2025/06/09 6:15 a.m.7 views

CVE-2025-25208

A Developer persona can bring down the Authorino service, preventing the evaluation of all AuthPolicies on the cluster...

5.7CVSS0.00048EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/06/09 6:13 a.m.2 views

CVE-2025-25208 Rhcl: authorino denial of service through authpolicy with sharedsecretref severity

A Developer persona can bring down the Authorino service, preventing the evaluation of all AuthPolicies on the cluster...

5.7CVSS5.9AI score0.00048EPSS
Exploits0References2
CVE
CVEadded 2025/06/09 6:13 a.m.62 views

CVE-2025-25208

CVE-2025-25208 affects the Authorino project (github.com/kuadrant/authorino) and is described as an uncontrolled resource consumption denial of service through an authpolicy with sharedsecretref, per multiple connected entries (e.g., CVE list/circl). The core impact is that a malicious/developer ...

5.7CVSS5.6AI score0.00048EPSS
Exploits0References2
Cvelist
Cvelistadded 2025/06/09 6:13 a.m.11 views

CVE-2025-25208 Rhcl: authorino denial of service through authpolicy with sharedsecretref severity

A Developer persona can bring down the Authorino service, preventing the evaluation of all AuthPolicies on the cluster...

5.7CVSS0.00048EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/06/09 6:12 a.m.3 views

CVE-2025-25207 Rhcl: authpolicy callbacks result in denial of service in authorino severity

The Authorino service in the Red Hat Connectivity Link is the authorization service for zero trust API security. Authorino allows the users with developer persona to add callbacks to be executed to HTTP endpoints once the authorization process is completed. It was found that an attacker with...

5.7CVSS6AI score0.0003EPSS
Exploits0References2
CVE
CVEadded 2025/06/09 6:12 a.m.63 views

CVE-2025-25207

The CVE concerns Authorino in Red Hat Connectivity Link. A developer-persona attacker can flood the service with post‑authorization callbacks, and since policy enforcement is handled by a single Authorino instance, this leads to Denial of Service during post‑authorization callback processing. Doc...

5.7CVSS5.7AI score0.0003EPSS
Exploits0References2
Rows per page
Query Builder