pkg:maven/com.ctrip.framework.apollo/apollo
Type
maven
Namespace
com.ctrip.framework.apollo
Name
apollo
Known advisories, vulnerabilities and fixes for com.ctrip.framework.apollo/apollo package.
Critical
1
High
1
Moderate
2
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | < 2.1.0 |
CVE-2023-25570
|
MAVEN:GHSA-368X-WMMG-HQ5C | Apollo has potential access control security issue in eureka | high |
2023-02-22T21:58:33
(19 months ago) |
|
Fixed | = 2.1.0 |
CVE-2023-25570
|
MAVEN:GHSA-368X-WMMG-HQ5C | Apollo has potential access control security issue in eureka | high |
2023-02-22T21:58:33
(19 months ago) |
|
Affected | < 2.3.0 |
CVE-2024-43397
|
MAVEN:GHSA-C6C3-H4F7-3962 | apollo-portal has potential unauthorized access issue | moderate |
2024-08-20T18:36:40
(3 weeks ago) |
|
Fixed | = 2.3.0 |
CVE-2024-43397
|
MAVEN:GHSA-C6C3-H4F7-3962 | apollo-portal has potential unauthorized access issue | moderate |
2024-08-20T18:36:40
(3 weeks ago) |
|
Affected | < 2.1.0 |
CVE-2023-25569
|
MAVEN:GHSA-FMXQ-V8MG-QH25 | apollo-portal has potential CSRF issue | moderate |
2023-02-22T21:58:27
(19 months ago) |
|
Fixed | = 2.1.0 |
CVE-2023-25569
|
MAVEN:GHSA-FMXQ-V8MG-QH25 | apollo-portal has potential CSRF issue | moderate |
2023-02-22T21:58:27
(19 months ago) |
|
Affected | <= 1.3.0 |
CVE-2019-10686
|
MAVEN:GHSA-FVX3-G627-PHM2 | Server-Side Request Forgery (SSRF) in com.ctrip.framework.apollo:apollo | critical |
2019-04-18T14:27:42
(5 years ago) |