Apache Apisix Vulnerabilities
Apache Apache Apisix vulnerabilities.
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Incorrect Permission Assignment in Apache APISIX Plugin Runner
CVE-2025-27446ApacheApache Apisix Java Plu...7.8HIGHVulnerability in OpenID Connect Plugin for Apache APISIX
CVE-2025-46647ApacheApache Apisix5.3MEDIUMInconsistent Interpretation of HTTP Requests Vulnerability in Apache APISIX
CVE-2024-32638ApacheApache Apisixπ°6.3MEDIUMapisix/jwt-auth may leak secrets in error response
CVE-2022-29266ApacheApache ApisixEPSS 35%7.5HIGHApache APISIX: the body_schema check in request-validation plugin can be bypassed
CVE-2022-25757ApacheApache Apisix9.8CRITICALapisix/batch-requests plugin allows overwriting the X-REAL-IP header
CVE-2022-24112ApacheApache ApisixπΎπ‘EPSS 94%π¦ 9.8CRITICALsecurity vulnerability on unauthorized access.
CVE-2021-45232ApacheApache Apisix DashboardπΎπ‘EPSS 94%9.8CRITICALPath traversal in request_uri variable
CVE-2021-43557ApacheApache ApisixπΎπ‘EPSS 35%7.5HIGHBypass network access control
CVE-2021-33190ApacheApache Apisix Dashboard5.3MEDIUMRemote Code Execution in Apache APISIX due to Open Admin API Access
CVE-2020-13945ApacheApache ApisixπΎπ‘EPSS 94%6.5MEDIUM
6 July 2025
2 July 2025
2 May 2024
20 April 2022
28 March 2022
11 February 2022
27 December 2021
22 November 2021
8 June 2021
7 December 2020
No more vulnerabilities to load.