Lucene search
K

17 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-7210

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.0042EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-16351

Malicious code in bioql PyPI...

5.8CVSS6.3AI score0.00422EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-7168

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00859EPSS
Exploits0References5
OSV
OSV
added 2025/05/27 8:47 p.m.3 views

GO-2025-3707 OpenFGA Authorization Bypass in github.com/openfga/openfga

OpenFGA Authorization Bypass in github.com/openfga/openfga...

8.8CVSS7.1AI score0.00422EPSS
Exploits0References3
OSV
OSV
added 2025/05/22 10:20 p.m.9 views

CVE-2025-48371 OpenFGA Authorization Bypass

OpenFGA is an authorization/permission engine. OpenFGA versions 1.8.0 through 1.8.12 corresponding to Helm chart openfga-0.2.16 through openfga-0.2.30 and docker 1.8.0 through 1.8.12 are vulnerable to authorization bypass when certain Check and ListObject calls are executed. Users are affected...

5.8CVSS6.5AI score0.00422EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/05/22 10:20 p.m.19 views

CVE-2025-48371 OpenFGA Authorization Bypass

OpenFGA is an authorization/permission engine. OpenFGA versions 1.8.0 through 1.8.12 corresponding to Helm chart openfga-0.2.16 through openfga-0.2.30 and docker 1.8.0 through 1.8.12 are vulnerable to authorization bypass when certain Check and ListObject calls are executed. Users are affected...

5.8CVSS0.00422EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/02 7:16 p.m.18 views

CVE-2025-46331

OpenFGA is a high-performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. OpenFGA v1.8.10 to v1.3.6 Helm chart = openfga-0.2.28, docker = v.1.8.10 are vulnerable to authorization bypass when certain Check and ListObject calls are executed. Th...

5.8CVSS6.9AI score0.00327EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/30 6:27 p.m.48 views

CVE-2025-46331 OpenFGA Authorization Bypass

OpenFGA is a high-performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. OpenFGA v1.8.10 to v1.3.6 Helm chart = openfga-0.2.28, docker = v.1.8.10 are vulnerable to authorization bypass when certain Check and ListObject calls are executed. Th...

5.8CVSS0.00327EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/04/30 12:0 a.m.7 views

PT-2025-18316 · Openfga · Openfga

Name of the Vulnerable Software and Affected Versions: OpenFGA versions 1.3.6 through 1.8.10 Description: OpenFGA is a high-performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. The issue concerns an authorization bypass when certain Check...

9.8CVSS7.3AI score0.00858EPSS
Exploits4References22
OSV
OSV
added 2025/03/03 7:22 p.m.13 views

GO-2025-3470 OpenFGA Authorization Bypass in github.com/openfga/openfga

OpenFGA Authorization Bypass in github.com/openfga/openfga...

9.8CVSS6.3AI score0.00401EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/02/19 8:18 p.m.8 views

CVE-2025-25196 OpenFGA Authorization Bypass

OpenFGA is a high-performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. OpenFGA v1.8.4 Helm chart openfga-0.2.22, docker v.1.8.4 are vulnerable to authorization bypass when certain Check and ListObject calls are executed. Users on OpenFGA...

5.8CVSS7AI score0.00401EPSS
Exploits0References2
NVD
NVD
added 2025/01/13 10:15 p.m.20 views

CVE-2024-56323

OpenFGA is an authorization/permission engine. IN OpenFGA v1.3.8 to v1.8.2 Helm chart openfga-0.1.38 to openfga-0.2.19, docker v1.3.8 to v.1.8.2 are vulnerable to authorization bypass under the following conditions: 1. calling Check API or ListObjects with a model that uses conditions, and 2...

9.8CVSS0.00428EPSS
Exploits0References1
OSV
OSV
added 2024/08/21 4:3 p.m.42 views

GO-2022-1179 OpenFGA Authorization Bypass in github.com/openfga/openfga

OpenFGA Authorization Bypass in github.com/openfga/openfga...

9.8CVSS9.4AI score0.0091EPSS
Exploits0References4
OSV
OSV
added 2024/08/21 4:3 p.m.49 views

GO-2022-1081 OpenFGA Authorization Bypass in github.com/openfga/openfga

OpenFGA Authorization Bypass in github.com/openfga/openfga...

9.8CVSS9.4AI score0.00859EPSS
Exploits0References4
OSV
OSV
added 2024/08/21 4:3 p.m.46 views

GO-2022-1099 OpenFGA Authorization Bypass in github.com/openfga/openfga

OpenFGA Authorization Bypass in github.com/openfga/openfga...

9.8CVSS9.4AI score0.0042EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2022/12/20 8:15 p.m.9 views

CVE-2022-23542 OpenFGA Authorization Bypass

OpenFGA is an authorization/permission engine built for developers and inspired by Google Zanzibar. During an internal security assessment, it was discovered that OpenFGA version 0.3.0 is vulnerable to authorization bypass under certain conditions. This issue has been patched in version 0.3.1 and...

7.7CVSS9.5AI score0.0091EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/10/25 12:0 a.m.6 views

CVE-2022-39342 OpenFGA Authorization Bypass

OpenFGA is an authorization/permission engine. Versions prior to version 0.2.4 are vulnerable to authorization bypass under certain conditions. Users whose model has a relation defined as a tupleset the right hand side of a ‘from’ statement that involves anything other than a direct relationship...

5.9CVSS9.5AI score0.00859EPSS
Exploits0References3
Rows per page
Query Builder