Gmod Apollo
4 CVEs affecting Gmod Apollo. Latest disclosed: 2025-03-05. Critical: 2, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-24924 | Critical | 9.8 | 2025-03-05 | Certain functionality within GMOD Apollo does not require authentication when passed with an administrative username |
CVE-2025-23410 | Critical | 9.8 | 2025-03-05 | When uploading organism or sequence data via the web interface, GMOD Apollo will unzip and inspect the files and will not check for path traversal in supp… |
CVE-2025-21092 | Medium | 6.5 | 2025-03-05 | GMOD Apollo does not have sufficient logical or access checks when updating a user's information. This could result in an attacker being able to escalate privi… |
CVE-2025-20002 | Medium | 5.3 | 2025-03-05 | After attempting to upload a file that does not meet prerequisites, GMOD Apollo will respond with local path information disclosure |