Vulnerabilities > Camunda
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-21 | CVE-2021-23460 | Unspecified vulnerability in Camunda Min-Dash The package min-dash before 3.8.1 are vulnerable to Prototype Pollution via the set method due to missing enforcement of key types. | 5.0 |
| 2021-03-11 | CVE-2021-28154 | Missing Authorization vulnerability in Camunda Modeler Camunda Modeler (aka camunda-modeler) through 4.6.0 allows arbitrary file access. | 9.1 |