Vulnerabilities > Yugabyte > Yugabytedb > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-09 | CVE-2023-0575 | Unspecified vulnerability in Yugabyte Yugabytedb External Control of Critical State Data, Improper Control of Generation of Code ('Code Injection') vulnerability in YugaByte, Inc. | 9.8 |
| 2022-08-12 | CVE-2022-37397 | Improper Authentication vulnerability in Yugabyte Yugabytedb 2.6.1 An issue was discovered in the YugabyteDB 2.6.1 when using LDAP-based authentication in YCQL with Microsoft’s Active Directory. | 9.8 |