Lucene search
China National Vulnerability DatabaseCNVD-2021-103668HistoryDec 28, 2021 - 12:00 a.m.
Apache Apisix Licensing Issue Vulnerability
2021-12-2800:00:00
China National Vulnerability Database
www.cnvd.org.cn
18
apache apisix
cloud-native
microservices
api gateway
openresty
etcd
vulnerability
authorization
dashboard
authentication
network system
configuration information
api management
EPSS
0.971
Percentile
99.8%
Apache Apisix is a cloud-native microservices API gateway service from the Apache Foundation in the United States. The software is based on OpenResty and etcd for dynamic routing and plug-in hot-loading, and is suitable for API management in microservice systems. an authorization issue vulnerability exists in Apache APISIX Dashboard, which stems from a lack of authentication measures or insufficient authentication strength in the network system or product. An attacker could use this vulnerability to directly access the interface of certain APIs to obtain configuration information.
Related
f5
f5
K31113511 : Apache APISIX Dashboard vulnerability CVE-2021-45232
2022-01-31 00:00:00
prion
prion
Authentication flaw
2021-12-27 15:15:00
osv
osv
BIT-apisix_dashboard-2021-45232
2024-03-06 10:50:33
CVE-2021-45232
2021-12-27 15:15:07
githubexploit
githubexploit
Exploit for Missing Authentication for Critical Function in Apache Apisix Dashboard
2021-12-28 11:36:38
Exploit for Missing Authentication for Critical Function in Apache Apisix Dashboard
2021-12-28 13:49:18
Exploit for CVE-2021-45232
2021-12-28 11:00:29
nessus
nessus
Apache APISIX Dashboard < 2.10.1 Authentication Bypass
2022-04-28 00:00:00
Apache APISIX Dashboard < 2.10.1 Authentication Bypass (Direct Check)
2022-04-28 00:00:00
nuclei
nuclei
Apache APISIX Dashboard <2.10.1 - API Unauthorized Access
2021-12-28 14:13:00
nvd
nvd
CVE-2021-45232
2021-12-27 15:15:07
cve
cve
CVE-2021-45232
2021-12-27 15:15:07
cvelist
cvelist
CVE-2021-45232 security vulnerability on unauthorized access.
2021-12-27 15:06:50