CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Apolloconfig: >> Apollo >> 2.1.0 Security Vulnerabilities

CVE-2024-43397

Apollo is a configuration management system. A vulnerability exists in the synchronization configuration feature that allows users to craft specific requests to bypass permission checks. This exploit enables them to modify a namespace without the necessary permissions. The issue was addressed with an input parameter check which was released in version 2.3.0.

CVSS Score

4.3

EPSS Score

0.001

Published

2024-08-20

Page 1

Vulnerabilities

Vulnerable Software

Apolloconfig: >> Apollo >> 2.1.0 Security Vulnerabilities

Products

Pricing

Contact Us