Cube-js Cube
3 CVEs affecting Cube-js Cube. Latest disclosed: 2026-02-09. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-25958 | High | 7.7 | 2026-02-09 | Cube is a semantic layer for building data applications. From 0.27.19 to before 1.5.13, 1.4.2, and 1.0.14, it is possible to make a specially crafted request w… |
CVE-2026-25957 | Medium | 6.5 | 2026-02-09 | Cube is a semantic layer for building data applications. From 1.1.17 to before 1.5.13 and 1.4.2, it is possible to make the entire Cube API unavailable by subm… |
CVE-2023-50709 | Medium | 6.5 | 2023-12-13 | Cube is a semantic layer for building data applications. Prior to version 0.34.34, it is possible to make the entire Cube API unavailable by submitting a speci… |