Immudb Security Vulnerabilities and Issues — Immudb CVE List

Lucene search

CodenotaryImmudb

3 matches found

CVE•added 2022/11/23 6:15 p.m.•59 views

CVE-2022-36111

immudb is a database with built-in cryptographic proof and verification. In versions prior to 1.4.1, a malicious immudb server can provide a falsified proof that will be accepted by the client SDK signing a falsified transaction replacing the genuine one. This situation can not be triggered by a ge...

5.4CVSS5.1AI score0.00139EPSS

CVE•added 2022/11/22 8:15 p.m.•56 views

CVE-2022-39199

immudb is a database with built-in cryptographic proof and verification. immudb client SDKs use server's UUID to distinguish between different server instance so that the client can connect to different immudb instances and keep the state for multiple servers. SDK does not validate this uuid and ca...

5.9CVSS5.5AI score0.00043EPSS

CVE•added 2024/07/31 10:15 p.m.•36 views

CVE-2024-41262

mmudb v1.9.3 was discovered to use the HTTP protocol in the ShowMetricsRaw and ShowMetricsAsText functions, possibly allowing attackers to intercept communications via a man-in-the-middle attack.

7.4CVSS7.2AI score0.00058EPSS