Vulnerabilities > Zalando

DATE CVE VULNERABILITY TITLE RISK
2022-10-25 CVE-2022-38580 Server-Side Request Forgery (SSRF) vulnerability in Zalando Skipper
Zalando Skipper v0.13.236 is vulnerable to Server-Side Request Forgery (SSRF).
network
low complexity
zalando CWE-918
critical
9.8
2022-06-23 CVE-2022-34296 Unspecified vulnerability in Zalando Skipper
In Zalando Skipper before 0.13.218, a query predicate could be bypassed via a prepared request.
network
low complexity
zalando
7.5