Skip to main content

Akana Api

3 CVEs product

Monthly

CVE-2024-5250 MEDIUM This Month

In versions of Akana API Platform prior to 2024.1.0 overly verbose errors can be found in SAML integrations. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Akana Api
NVD
CVSS 3.1
5.3
EPSS
0.3%
CVE-2024-5249 HIGH This Week

In versions of Akana API Platform prior to 2024.1.0, SAML tokens can be replayed. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Akana Api
NVD
CVSS 3.1
7.5
EPSS
0.2%
CVE-2024-3930 CRITICAL Act Now

In versions of Akana API Platform prior to 2024.1.0 a flaw resulting in XML External Entity (XXE) was discovered. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XXE Akana Api
NVD
CVSS 3.1
9.8
EPSS
0.3%
EPSS 0% CVSS 5.3
MEDIUM This Month

In versions of Akana API Platform prior to 2024.1.0 overly verbose errors can be found in SAML integrations. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Akana Api
NVD
EPSS 0% CVSS 7.5
HIGH This Week

In versions of Akana API Platform prior to 2024.1.0, SAML tokens can be replayed. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Akana Api
NVD
EPSS 0% CVSS 9.8
CRITICAL Act Now

In versions of Akana API Platform prior to 2024.1.0 a flaw resulting in XML External Entity (XXE) was discovered. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XXE Akana Api
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy