Apache Apisix Vulnerabilities
Apache Apache Apisix vulnerabilities.
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
Improper Authentication Vulnerability in Apache APISIX by Apache
CVE-2026-49872ApacheApache Apisix5.3MEDIUMCross-Site Request Forgery Vulnerability in Apache APISIX by Apache
CVE-2026-49871ApacheApache Apisix2.1LOWAuthentication Bypass Vulnerability in Apache APISIX
CVE-2026-47341ApacheApache Apisix6.3MEDIUMOpen Redirect Vulnerability in Apache APISIX by Apache
CVE-2026-48895ApacheApache Apisix2.1LOWAuthentication Bypass Vulnerability in Apache APISIX OPA Plugin
CVE-2026-49231ApacheApache Apisix2.3LOWAuthentication Bypass Vulnerability in Apache APISIX Plugin
CVE-2026-49230ApacheApache Apisix6.3MEDIUMOpen Redirect Vulnerability in Apache APISIX by Apache
CVE-2026-44915ApacheApache Apisix2.1LOWInsufficient Data Authenticity Verification in Apache APISIX OpenID Connect Plugin
CVE-2026-44087ApacheApache Apisix5.3MEDIUMIncorrect Authorization Vulnerability in Apache APISIX by Apache
CVE-2026-47339ApacheApache Apisix5.3MEDIUMLess Trusted Source Vulnerability in Apache APISIX by Apache
CVE-2026-44046ApacheApache Apisix2.3LOWAuthentication Bypass Vulnerability in Apache APISIX by Apache
CVE-2026-39999ApacheApache Apisix7HIGHImproper Input Validation in Apache APISIX Affects Identity Header Spoofing
CVE-2026-39998ApacheApache Apisix5.8MEDIUMCleartext Transmission Vulnerability in Apache APISIX by Apache
CVE-2026-31923ApacheApache Apisix7.5HIGHCleartext Transmission Vulnerability in Apache APISIX by Apache
CVE-2026-31924ApacheApache Apisix5.3MEDIUMHeader Injection Vulnerability in Apache APISIX by Apache Software Foundation
CVE-2026-31908ApacheApache Apisix👾🟡9.1CRITICALSensitive Data Exposure Vulnerability in Apache APISIX by Apache
CVE-2025-62232ApacheApache Apisix7.5HIGHIncorrect Permission Assignment in Apache APISIX Plugin Runner
CVE-2025-27446ApacheApache Apisix Java Plu...7.8HIGHVulnerability in OpenID Connect Plugin for Apache APISIX
CVE-2025-46647ApacheApache Apisix5.3MEDIUMInconsistent Interpretation of HTTP Requests Vulnerability in Apache APISIX
CVE-2024-32638ApacheApache Apisix📰6.3MEDIUMapisix/jwt-auth may leak secrets in error response
CVE-2022-29266ApacheApache Apisix7.5HIGHApache APISIX: the body_schema check in request-validation plugin can be bypassed
CVE-2022-25757ApacheApache Apisix9.8CRITICALapisix/batch-requests plugin allows overwriting the X-REAL-IP header
CVE-2022-24112ApacheApache Apisix👾🟡EPSS 96%🦅9.8CRITICALsecurity vulnerability on unauthorized access.
CVE-2021-45232ApacheApache Apisix Dashboard👾🟡EPSS 85%9.8CRITICALPath traversal in request_uri variable
CVE-2021-43557ApacheApache Apisix👾🟡EPSS 14%7.5HIGHBypass network access control
CVE-2021-33190ApacheApache Apisix Dashboard5.3MEDIUM