Streampipes

2 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2025-47411 HIGH PATCH This Week

A user with a legitimate non-administrator account can exploit a vulnerability in the user ID creation mechanism in Apache StreamPipes that allows them to swap the username of an existing user with that of an administrator. [CVSS 8.1 HIGH]

Apache Streampipes
NVD
CVSS 3.1
8.1
EPSS
0.0%
CVE-2024-24778 MEDIUM PATCH This Month

Improper privilege management in a REST interface allowed registered users to access unauthorized resources if the resource ID was know.95.1. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Apache Privilege Escalation Streampipes
NVD
CVSS 3.1
6.5
EPSS
0.1%
CVE-2025-47411
EPSS 0% CVSS 8.1
HIGH PATCH This Week

A user with a legitimate non-administrator account can exploit a vulnerability in the user ID creation mechanism in Apache StreamPipes that allows them to swap the username of an existing user with that of an administrator. [CVSS 8.1 HIGH]

Apache Streampipes
NVD
CVE-2024-24778
EPSS 0% CVSS 6.5
MEDIUM PATCH This Month

Improper privilege management in a REST interface allowed registered users to access unauthorized resources if the resource ID was know.95.1. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Apache Privilege Escalation Streampipes
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy