Apolloconfig Apollo
5 CVEs affecting Apolloconfig Apollo. Latest disclosed: 2024-08-20. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-42662 | High | 7.5 | 2024-08-20 | An issue in apollocongif apollo v.2.2.0 allows a remote attacker to obtain sensitive information via a crafted request. |
CVE-2023-25570 | High | 7.5 | 2023-02-20 | Apollo is a configuration management system. Prior to version 2.1.0, there are potential security issues if users expose apollo-configservice to the internet… |
CVE-2023-25569 | Medium | 5.7 | 2023-02-20 | Apollo is a configuration management system. Prior to version 2.1.0, a low-privileged user can create a special web page. If an authenticated portal admin visi… |
CVE-2024-43397 | Medium | 4.3 | 2024-08-20 | Apollo is a configuration management system. A vulnerability exists in the synchronization configuration feature that allows users to craft specific requests t… |
CVE-2022-4962 | Medium | 4.3 | 2024-01-12 | A vulnerability was found in Apollo 2.0.0/2.0.1 and classified as problematic. Affected by this issue is some unknown functionality of the file /users of the c… |