Vulnerabilities > Hasura
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-14 | CVE-2023-27588 | Path Traversal vulnerability in Hasura Graphql Engine Hasura is an open-source product that provides users GraphQL or REST APIs. | 7.5 |
| 2022-12-08 | CVE-2022-46792 | Incorrect Authorization vulnerability in Hasura Graphql Engine Hasura GraphQL Engine before 2.15.2 mishandles row-level authorization in the Update Many API for Postgres backends. | 8.8 |
| 2019-07-29 | CVE-2019-1020015 | Unspecified vulnerability in Hasura Graphql Engine 1.0.0 graphql-engine (aka Hasura GraphQL Engine) before 1.0.0-beta.3 mishandles the audience check while verifying JWT. | 7.5 |