Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5
CVE-2024-47173
- EPSS 0.17%
- Published 24.10.2024 19:15:14
- Last modified 25.10.2024 12:56:07
Aimeos is an e-commerce framework. All SaaS and marketplace setups using the Aimeos GraphQL API admin interface version from 2024.04 up to 2024.07.1 are affected by a potential denial of service attack. Version 2024.07.2 fixes the issue.
3.8
CVE-2024-39324
- EPSS 0.14%
- Published 02.07.2024 21:15:11
- Last modified 21.11.2024 09:27:27
aimeos/ai-admin-graphql is the Aimeos GraphQL API admin interface. Starting in version 2022.04.1 and prior to versions 2022.10.10, 2023.10.6, and 2024.4.2, improper access control allows a editors to manage own services via GraphQL API which isn't al...
7.1
CVE-2024-39323
- EPSS 0.11%
- Published 02.07.2024 16:15:04
- Last modified 21.11.2024 09:27:27
aimeos/ai-admin-graphql is the Aimeos GraphQL API admin interface. Starting in version 2022.04.01 and prior to versions 2022.10.10, 2023.10.6, and 2024.04.6, an improper access control vulnerability allows an editor to modify and take over an admin a...
1