Vulnerabilities > Openfga

DATE CVE VULNERABILITY TITLE RISK
2024-08-12 CVE-2024-42473 Incorrect Authorization vulnerability in Openfga 1.5.7/1.5.8
OpenFGA is an authorization/permission engine.
network
low complexity
openfga CWE-863
critical
9.8
2024-01-26 CVE-2024-23820 Memory Leak vulnerability in Openfga
OpenFGA, an authorization/permission engine, is vulnerable to a denial of service attack in versions prior to 1.4.3.
network
low complexity
openfga CWE-401
6.5
2023-10-17 CVE-2023-45810 Resource Exhaustion vulnerability in Openfga
OpenFGA is a flexible authorization/permission engine built for developers and inspired by Google Zanzibar.
network
low complexity
openfga CWE-400
7.5
2023-09-27 CVE-2023-43645 Unspecified vulnerability in Openfga
OpenFGA is an authorization/permission engine built for developers and inspired by Google Zanzibar.
network
high complexity
openfga
5.9
2023-08-25 CVE-2023-40579 Unspecified vulnerability in Openfga
OpenFGA is an authorization/permission engine built for developers and inspired by Google Zanzibar.
network
low complexity
openfga
6.5
2023-06-26 CVE-2023-35933 Unspecified vulnerability in Openfga
OPenFGA is an open source authorization/permission engine built for developers.
network
low complexity
openfga
7.5
2022-12-20 CVE-2022-23542 Unspecified vulnerability in Openfga
OpenFGA is an authorization/permission engine built for developers and inspired by Google Zanzibar.
network
low complexity
openfga
critical
9.8
2022-11-08 CVE-2022-39352 Incorrect Authorization vulnerability in Openfga
OpenFGA is a high-performance authorization/permission engine inspired by Google Zanzibar.
network
low complexity
openfga CWE-863
critical
9.8
2022-10-25 CVE-2022-39340 Missing Authorization vulnerability in Openfga
OpenFGA is an authorization/permission engine.
network
low complexity
openfga CWE-862
5.3
2022-10-25 CVE-2022-39341 Unspecified vulnerability in Openfga
OpenFGA is an authorization/permission engine.
network
low complexity
openfga
critical
9.8