Lucene search
K
ApacheApisix

25 matches found

CVE
CVE
added 2023/10/10 12:0 a.m.5320 views

CVE-2023-44487

CVE-2023-44487 – HTTP/2 Rapid Reset DoS Root cause: HTTP/2 stream resets can cause servers to continue processing, leading to unbounded resource consumption and potential DoS when clients rapidly cancel streams. What’s affected: Various HTTP/2 implementations and deployments, including servers, p...

7.5CVSS8AI score0.99999EPSS
In wild
CVE
CVE
added 2022/02/11 12:20 p.m.1059 views

CVE-2022-24112

CVE-2022-24112 affects Apache APISIX. It arises from the batch-requests plugin, where a bug can bypass the Admin API IP restriction, enabling remote code execution. Exploits/PoCs exist for APISIX 2.12.0–2.12.1 demonstrating RCE via admin API path and Lua code injection in routes, with documented ...

9.8CVSS9.7AI score0.96182EPSS
In wild
CVE
CVE
added 2022/04/20 7:15 a.m.607 views

CVE-2022-29266

Apache APISIX prior to 3.13.1 is affected by an information-disclosure issue in the jwt-auth plugin. The error message returned by the dependency lua-resty-jwt can leak the user’s secret key, enabling leakage of sensitive credentials. Affected product: Apache APISIX (jwt-auth plugin); vulnerable ...

7.5CVSS7.5AI score0.0783EPSS
CVE
CVE
added 2022/03/28 7:0 a.m.129 views

CVE-2022-25757

CVE-2022-25757 (Apache APISIX) affects APISIX up to version 2.12.x before 2.13.0. When decoding JSON with duplicate keys, lua-cjson returns the last value, allowing an attacker to bypass the body_schema validation in the request-validation plugin (e.g., {"string_payload":"bad","string_payload":"g...

9.8CVSS9.5AI score0.02384EPSS
CVE
CVE
added 2020/12/07 7:4 p.m.123 views

CVE-2020-13945

Apache APISIX 1.2–1.5 are vulnerable when the Admin API is enabled and Admin API access IP restriction rules are removed, allowing the default token to access APISIX management data. The root cause is insufficient protection of credentials leading to unauthorized access. Impact is unauthorized ac...

6.5CVSS6.5AI score0.72976EPSS
CVE
CVE
added 2024/05/02 9:20 a.m.120 views

CVE-2024-32638

This CVE (CVE-2024-32638) concerns Apache APISIX and the forward-auth plugin, where an Inconsistent Interpretation of HTTP Requests (HTTP Request Smuggling) vulnerability exists. Affected versions are APISIX 3.8.0 and 3.9.0; upgrading to 3.8.1, 3.9.1, or newer mitigates the issue. The vulnerabili...

6.3CVSS6.4AI score0.01065EPSS
CVE
CVE
added 2021/11/22 8:25 a.m.82 views

CVE-2021-43557

CVE-2021-43557 affects Apache APISIX prior to 2.10.2. The issue is in the uri-block plugin, which uses $request_uri (the full original request URI without normalization) without verification, enabling construction of URIs that can bypass the block list (e.g., a block entry like ^/internal/ could ...

7.5CVSS7.3AI score0.14589EPSS
Web
CVE
CVE
added 2025/10/31 8:48 a.m.55 views

CVE-2025-62232

Apache APISIX is affected by a logging-related data exposure (CVE-2025-62232) where basic-auth credentials are written in plaintext to error logs and forwarded to log sinks when the log level is INFO/DEBUG. The issue is caused by logging sensitive data during normal operation, creating a high ris...

7.5CVSS6.5AI score0.00434EPSS
CVE
CVE
added 2026/06/19 1:18 p.m.51 views

CVE-2026-49871

CVE-2026-49871 describes a Cross-Site Request Forgery (CSRF) vulnerability in the cas-auth plugin under default configurations in Apache APISIX versions 3.0.0–3.16.0. The issue allows a remote attacker who can lure a victim to a controlled webpage to cause the victim’s browser to become authentic...

9.3CVSS5.9AI score0.00261EPSS
CVE
CVE
added 2025/07/06 6:5 a.m.45 views

CVE-2025-27446

CVE-2025-27446 affects Apache APISIX (java-plugin-runner) from version 0.2.0 through 0.5.0. The root cause is improper permissions on a local listening file, enabling a local attacker to elevate privileges. The issue’s impact is high (local, user-privilege escalation with high confidentiality/int...

7.8CVSS6.4AI score0.00172EPSS
CVE
CVE
added 2026/06/19 1:13 p.m.40 views

CVE-2026-49230

CVE-2026-49230 affects Apache APISIX via the jwe-decrypt plugin in default config, enabling authentication bypass. Vulnerable versions are 3.8.0–3.16.0; remediation is upgrade to 3.17.0. The CVE details indicate a improper validation of an integrity check value, with a network-exposed risk. If ex...

9.1CVSS5.8AI score0.00224EPSS
CVE
CVE
added 2026/04/14 8:6 a.m.39 views

CVE-2026-31908

Apache APISIX (forward-auth plugin) is affected by a header injection vulnerability (CVE-2026-31908) tracked across multiple feeds. Affects versions 2.12.0 through 3.15.0; exploitation arises from improper sanitization of CRLF sequences in the forward-auth plugin, enabling injection of HTTP heade...

9.1CVSS5.8AI score0.00521EPSS
CVE
CVE
added 2026/06/19 1:7 p.m.38 views

CVE-2026-39999

CVE-2026-39999 is an authentication bypass in Apache APISIX caused by misconfigurations in the jwt-auth plugin. Affected versions are 2.2 through 3.16.0; the issue allows bypassing authentication via spoofed tokens. The entry is resolved by upgrading to v3.17.0, which fixes the vulnerability. Rel...

9.1CVSS5.9AI score0.00386EPSS
CVE
CVE
added 2026/06/19 1:9 p.m.37 views

CVE-2026-44046

Apache APISIX is affected by CVE-2026-44046 due to a Less Trusted Source issue in the wolf-rbac plugin under default configuration. Affected versions: 1.2.0 through 3.16.0. Exploitation can allow spoofed identity information to be logged and potentially bypass or abuse IP-based access controls. T...

5.8CVSS5.8AI score0.00314EPSS
CVE
CVE
added 2026/06/19 1:11 p.m.37 views

CVE-2026-44087

CVE-2026-44087 affects Apache APISIX via the openid-connect plugin under default configuration. The root cause is insufficient verification of data authenticity, enabling spoofing of identity headers and unauthorized access to protected resources. Affected versions are 2.3 through 3.16.0. The iss...

9.1CVSS5.8AI score0.00213EPSS
CVE
CVE
added 2026/04/14 8:38 a.m.33 views

CVE-2026-31923

CVE-2026-31923 affects Apache APISIX (0.7–3.15.0) due to openid-connect plugin tls_verify/ssl_verify being disabled by default, enabling cleartext transmission of sensitive information. The CVSSv3.1 base score is 7.5 (Network attack, Low attack complexity, no privileges or user interaction, Confi...

7.5CVSS5.8AI score0.0025EPSS
CVE
CVE
added 2026/06/19 1:12 p.m.31 views

CVE-2026-44915

CVE-2026-44915 is an Open Redirect vulnerability in Apache APISIX related to the cas-auth plugin in its default configuration. The issue affects Apache APISIX versions 3.0.0 through 3.16.0 and could enable phishing and credential theft. Apache recommends upgrading to version 3.17.0, which contain...

6.1CVSS5.8AI score0.004EPSS
CVE
CVE
added 2025/07/02 11:8 a.m.30 views

CVE-2025-46647

CVE-2025-46647 concerns Apache APISIX openid-connect plugin (introspection mode) where multiple issuers sharing the same private key can allow a user authenticated to one issuer to access another issuer. Public details from multiple sources specify the vulnerability requires: (1) openid-connect p...

5.3CVSS7.2AI score0.00412EPSS
CVE
CVE
added 2026/06/19 1:10 p.m.28 views

CVE-2026-47339

CVE-2026-47339 affects Apache APISIX (authz-casdoor plugin). Under default configuration, it allows an attacker to authenticate using credentials from a different source, indicating an incorrect authorization vulnerability across versions 2.14.1 through 3.16.0. The risk is described as high (per ...

8.1CVSS5.9AI score0.00285EPSS
CVE
CVE
added 2026/06/19 1:14 p.m.26 views

CVE-2026-49231

CVE-2026-49231 describes an authentication bypass via spoofed identity headers in the APISIX opa plugin. Affected software: Apache APISIX (versions 3.5.0–3.16.0). Root cause: spoofed headers accepted due to non-default plugin configuration, allowing an attacker to relay identities to an upstream ...

5.4CVSS5.9AI score0.00359EPSS
CVE
CVE
added 2026/06/19 1:19 p.m.22 views

CVE-2026-49872

The CVE-2026-49872 entry concerns Apache APISIX and its cas-auth plugin. Affected versions are 3.0.0 through 3.16.0; the issue is an improper authentication flaw where, when cas-auth is used on a route, an attacker may authenticate using credentials from a different source. The public documentati...

8.1CVSS5.9AI score0.0032EPSS
CVE
CVE
added 2026/06/19 1:4 p.m.21 views

CVE-2026-39998

CVE-2026-39998 describes an identity-header spoofing issue in Apache APISIX caused by improper input validation in the forward-auth plugin. Affects APISIX releases from 2.12.0 through 3.16.0. Exploitation could enable an attacker to spoof identity headers due to configuration in forward-auth. The...

8.8CVSS5.8AI score0.00403EPSS
CVE
CVE
added 2026/06/19 1:17 p.m.19 views

CVE-2026-47341

CVE-2026-47341 describes an authentication bypass in Apache APISIX due to a capture-replay flaw in the hmac-auth configuration. The issue allows an attacker to reuse a token indefinitely, bypassing expiry, with affected versions 3.11.0 through 3.16.0. The advisory recommends upgrading to 3.17.0, ...

6.5CVSS5.8AI score0.0043EPSS
CVE
CVE
added 2026/06/19 1:16 p.m.19 views

CVE-2026-48895

CVE-2026-48895 describes an open redirect in Apache APISIX (affected versions 3.0.0–3.16.0). The issue allows manipulation of certain client headers to redirect to an untrusted site, with potential exposure of session tokens. The advisory recommends upgrading to version 3.17.0, which contains the...

7.2CVSS5.8AI score0.00409EPSS
CVE
CVE
added 2026/04/14 8:8 a.m.18 views

CVE-2026-31924

Summary: CVE-2026-31924 affects Apache APISIX due to cleartext transmission of sensitive information in the tencent-cloud-cls log export feature. Affected versions are 2.99.0 through 3.15.0. The issue enables plaintext HTTP exposure for logs/telemetry as described in connected advisories. Impact ...

5.3CVSS5.8AI score0.00238EPSS