Ekuiper Security Vulnerabilities and Issues — Ekuiper CVE List

Lucene search

Lf-edgeEkuiper

3 matches found

CVE•added 2025/03/10 6:15 p.m.•35 views

CVE-2024-52812

LF Edge eKuiper is an internet-of-things data analytics and stream processing engine. Prior to version 2.0.8, auser with rights to modify the service (e.g. kuiperUser role) can inject a cross-site scripting payload into the rule id parameter. Then, after any user with access to this service (e.g. a...

5.4CVSS6.4AI score0.00133EPSS

CVE•added 2025/05/14 8:15 a.m.•24 views

CVE-2024-52290

LF Edge eKuiper is a lightweight internet of things (IoT) data analytics and stream processing engine. Prior to version 2.1.0 user with rights to modificate the service (e.g. kuiperUser role) can inject a cross-site scripting payload into Connection Configuration key Name (confKey) parameter. After...

6.3CVSS6.5AI score0.00043EPSS

CVE•added 5 days ago•10 views

CVE-2025-54379

LF Edge eKuiper is a lightweight IoT data analytics and stream processing engine running on resource-constraint edge devices. In versions before 2.2.1, there is a critical SQL Injection vulnerability in the getLast API functionality of the eKuiper project. This flaw allows unauthenticated remote at...

9.3CVSS8.8AI score0.00124EPSS