@faasjs/graphql-server (>=0.0.2-beta.4 <=0.0.2-beta.253), @galdirik/common (>=1.0.52 <=1.1.42) +69 more potentially affected by CVE-2026-32621 via @apollo/gateway (>=2.0.0-preview.2 <=2.9.3)

@apollo/gateway NPM version =2.0.0-preview.2, =0.0.2-beta.4, =1.0.52, =1.7.3, =3.0.5, =3.0.4, =0.2.0, =0.11.46, =1.0.0, =1.0.0, =1.0.0, =0.0.1, =8.6.7, =6.0.0-dev.156-swarm.1, =0.7.0-alpha.3, =0.7.32 and more Source cves: CVE-2026-32621 Source advisory: SNYK:JS-APOLLOGATEWAY-15612461...

CVE-2025-14480

IBM Aspera faspio Gateway 1.3.6 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

EUVD-2024-23224

Malicious code in bioql PyPI...

CVE-2025-25235

Server-Side Request Forgery SSRF in Omnissa Secure Email Gateway SEG in SEG prior to 2.32 running on Windows and SEG prior to 2503 running on UAG allows routing of network traffic such as HTTP requests to internal networks...

Progress Software MOVEit Security Vulnerability

Progress Software MOVEit is a secure hosted file transfer software from Progress Software, USA. A security vulnerability exists in Progress Software MOVEit Gateway version 2024.0.0 that stems from the presence of an incorrect authentication vulnerability that allows bypassing authentication...

CVE-2021-34565

In PEPPERL+FUCHS WirelessHART-Gateway 3.0.7 to 3.0.9 the SSH and telnet services are active with hard-coded credentials...

CVE-2020-28414

A reflected cross-site scripting XSS vulnerability exists in the TranzWare Payment Gateway 3.1.12.3.2. A remote unauthenticated attacker is able to execute arbitrary HTML code via crafted url different vector than CVE-2020-28415...

CVE-2020-28415

A reflected cross-site scripting XSS vulnerability exists in the TranzWare Payment Gateway 3.1.12.3.2. A remote unauthenticated attacker is able to execute arbitrary HTML code via crafted url different vector than CVE-2020-28414...

CVE-2017-1487

IBM Sterling File Gateway 2.2 could allow an authenticated attacker to obtain sensitive information such as login ids on the system. IBM X-Force ID: 128626...

Juniper Networks Junos OS Local Privilege Escalation Vulnerability

Junos OS is prone to a local privilege escalation vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:juniper:junos"; ...

MyAuth3 Gateway 'pass' Parameter SQL Injection Vulnerability

This host is running MyAuth3 Gateway and is prone SQL injection vulnerability. OpenVAS Vulnerability Test $Id: gbmyauth3gatewayblindsqlinjvuln.nasl 5793 2017-03-30 13:40:15Z cfi $ MyAuth3 Gateway 'pass' Parameter SQL Injection Vulnerability Authors: Antu Sanadi Copyright: Copyright c 2011 Greenbo...