Vulnerabilities (CVE)

Filtered by vendor Zalando Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-38580 1 Zalando 1 Skipper 2023-12-10 N/A 9.8 CRITICAL
Zalando Skipper v0.13.236 is vulnerable to Server-Side Request Forgery (SSRF).
CVE-2022-34296 1 Zalando 1 Skipper 2023-12-10 5.0 MEDIUM 7.5 HIGH
In Zalando Skipper before 0.13.218, a query predicate could be bypassed via a prepared request.