Authzed Spicedb

13 CVEs affecting Authzed Spicedb. Latest disclosed: 2026-04-14. Critical: 0, High: 3.

Top CVEs affecting Authzed Spicedb
CVESeverityScorePublishedSummary
CVE-2023-29193High8.72023-04-14SpiceDB is an open source, Google Zanzibar-inspired, database system for creating and managing security-critical application permissions. The `spicedb serve` c…
CVE-2022-21646High8.12022-01-11SpiceDB is a database system for managing security-critical application permissions. Any user making use of a wildcard relationship under the right hand branch…
CVE-2024-27101High7.32024-03-01SpiceDB is an open source, Google Zanzibar-inspired database for creating and managing security-critical application permissions. Integer overflow in chunking…
CVE-2026-40091Medium6.02026-04-14SpiceDB is an open source database system for creating and managing security-critical application permissions. In versions 1.49.0 through 1.51.0, when SpiceDB…
CVE-2023-46255Medium4.22023-10-31SpiceDB is an open source, Google Zanzibar-inspired database for creating and managing security-critical application permissions. Prior to version 1.27.0-rc1…
CVE-2025-49011Low3.72025-06-06SpiceDB is an open source database for storing and querying fine-grained authorization data. Prior to version 1.44.2, on schemas involving arrows with caveats…
CVE-2024-46989Low3.72024-09-18spicedb is an Open Source, Google Zanzibar-inspired permissions database to enable fine-grained authorization for customer applications. Multiple caveats over…
CVE-2024-38361Low3.72024-06-20Spicedb is an Open Source, Google Zanzibar-inspired permissions database to enable fine-grained authorization for customer applications. Use of an exclusion un…
CVE-2023-35930Low3.72023-06-26SpiceDB is an open source, Google Zanzibar-inspired, database system for creating and managing security-critical application permissions. Any user making a neg…
CVE-2024-32001Low2.22024-04-10SpiceDB is a graph database purpose-built for storing and evaluating access control data. Use of a relation of the form: `relation folder: folder | folder#pare…
CVE-2024-48909Low2.02024-10-14SpiceDB is an open source database for scalably storing and querying fine-grained authorization data. Starting in version 1.35.0 and prior to version 1.37.1, c…
CVE-2025-651112025-11-21SpiceDB is an open source database system for creating and managing security-critical application permissions. Prior to version 1.47.1, if a schema includes th…
CVE-2025-645292025-11-10SpiceDB is an open source database system for creating and managing security-critical application permissions. In versions prior to 1.45.2, users who use the e…