Vulnerability-Lookup

Recent vulnerabilities from

Select from 70 available sources using the dropdown above.

ID	Description	Published	Updated
bit-airflow-2023-51702	Apache Airflow CNCF Kubernetes provider, Apache Airflow: Kubernetes configuration file saved without encryption in the Metadata and logged as plain text in the Triggerer service	2024-03-06T10:50:28.804Z	2025-05-20T10:02:07.006Z
bit-apache-2023-45802	Apache HTTP Server: HTTP/2 stream memory not reclaimed right away on RST	2024-03-06T10:50:33.560Z	2025-05-20T10:02:07.006Z
bit-apr-2022-28331	Apache Portable Runtime (APR): Windows out-of-bounds write in apr_socket_sendv function	2024-03-06T10:50:33.685Z	2025-05-20T10:02:07.006Z
bit-appsmith-2022-4096	Server-Side Request Forgery (SSRF) in appsmithorg/appsmith	2024-03-06T10:50:34.576Z	2025-05-20T10:02:07.006Z
bit-apisix-2023-44487		2024-03-06T10:50:34.863Z	2026-05-13T12:07:18.771Z
bit-airflow-2023-50944	Apache Airflow: Bypass permission verification to read code of other dags	2024-03-06T10:50:38.379Z	2025-05-20T10:02:07.006Z
bit-apache-2023-43622	Apache HTTP Server: DoS in HTTP/2 with initial windows size 0	2024-03-06T10:50:43.363Z	2025-05-20T10:02:07.006Z
bit-apisix-2022-29266	apisix/jwt-auth may leak secrets in error response	2024-03-06T10:50:44.063Z	2025-05-20T10:02:07.006Z
bit-brotli-2020-8927	Buffer overflow in Brotli library	2024-03-06T10:50:45.386Z	2025-05-20T10:02:07.006Z
bit-cassandra-2023-30601	Apache Cassandra: Privilege escalation when enabling FQL/Audit logs	2024-03-06T10:50:45.472Z	2025-05-20T10:02:07.006Z
bit-apr-2022-24963	Apache Portable Runtime (APR): out-of-bound writes in the apr_encode family of functions	2024-03-06T10:50:46.060Z	2025-05-20T10:02:07.006Z
bit-appsmith-2022-39824		2024-03-06T10:50:47.399Z	2025-04-03T14:40:37.652Z
bit-airflow-2023-50943	Apache Airflow: Potential pickle deserialization vulnerability in XComs	2024-03-06T10:50:50.999Z	2025-05-20T10:02:07.006Z
bit-clickhouse-2020-26759		2024-03-06T10:50:51.666Z	2025-04-03T14:40:37.652Z
bit-composer-2024-24821	Code execution and possible privilege escalation via compromised InstalledVersions.php or installed.php in Composer	2024-03-06T10:50:51.366Z	2025-05-20T10:02:07.006Z
bit-concourse-2022-31683		2024-03-06T10:50:52.308Z	2025-04-03T14:40:37.652Z
bit-apache-2023-31122	Apache HTTP Server: mod_macro buffer over-read	2024-03-06T10:50:54.601Z	2025-05-20T10:02:07.006Z
bit-apisix-2022-25757	Apache APISIX: the body_schema check in request-validation plugin can be bypassed	2024-03-06T10:50:56.297Z	2025-05-20T10:02:07.006Z
bit-apr-2021-35940	Regression of CVE-2017-12613	2024-03-06T10:50:57.087Z	2025-05-20T10:02:07.006Z
bit-cassandra-2021-44521	Remote code execution for scripted UDFs	2024-03-06T10:50:58.097Z	2025-05-20T10:02:07.006Z
bit-consul-2023-5332	Dependency on Vulnerable Third-Party Component in GitLab	2024-03-06T10:50:58.088Z	2025-05-20T10:02:07.006Z
bit-contour-2023-44487		2024-03-06T10:50:58.800Z	2026-05-13T12:07:18.771Z
bit-cosign-2023-46737	Possible endless data attack from attacker-controlled registry in cosign	2024-03-06T10:50:59.503Z	2025-05-20T10:02:07.006Z
bit-appsmith-2022-38299		2024-03-06T10:51:02.508Z	2025-04-03T14:40:37.652Z
bit-concourse-2020-5415	Concourse's GitLab auth allows impersonation	2024-03-06T10:51:03.790Z	2025-05-20T10:02:07.006Z
bit-couchdb-2023-45725	Apache CouchDB, IBM Cloudant: Privilege Escalation Using _design Documents	2024-03-06T10:51:03.389Z	2025-05-20T10:02:07.006Z
bit-airflow-2023-50783	Apache Airflow: Improper access control vulnerability on the "varimport" endpoint	2024-03-06T10:51:04.280Z	2025-05-20T10:02:07.006Z
bit-apache-2023-27522	Apache HTTP Server: mod_proxy_uwsgi HTTP response splitting	2024-03-06T10:51:05.888Z	2026-02-11T09:09:18.507Z
bit-apisix-2022-24112	apisix/batch-requests plugin allows overwriting the X-REAL-IP header	2024-03-06T10:51:05.969Z	2025-10-22T09:08:25.162Z
bit-composer-2023-43655	Remote Code Execution via web-accessible composer.phar	2024-03-06T10:51:05.800Z	2025-05-20T10:02:07.006Z