Vulnerabilities > Zitadel > Zitadel > 1.50.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-20 | CVE-2024-46999 | Unspecified vulnerability in Zitadel Zitadel is an open source identity management platform. | 6.5 |
| 2024-09-20 | CVE-2024-47000 | Unspecified vulnerability in Zitadel Zitadel is an open source identity management platform. | 7.5 |
| 2024-09-20 | CVE-2024-47060 | Incorrect Authorization vulnerability in Zitadel Zitadel is an open source identity management platform. | 6.5 |
| 2024-05-01 | CVE-2024-32967 | Unspecified vulnerability in Zitadel Zitadel is an open source identity management system. | 5.3 |
| 2024-04-26 | CVE-2024-32868 | Improper Restriction of Excessive Authentication Attempts vulnerability in Zitadel ZITADEL provides users the possibility to use Time-based One-Time-Password (TOTP) and One-Time-Password (OTP) through SMS and Email. | 8.1 |
| 2024-03-27 | CVE-2024-29891 | Cross-site Scripting vulnerability in Zitadel ZITADEL users can upload their own avatar image and various image types are allowed. | 8.7 |
| 2024-03-27 | CVE-2024-29892 | Incorrect Authorization vulnerability in Zitadel ZITADEL, open source authentication management software, uses Go templates to render the login UI. | 4.9 |
| 2024-03-18 | CVE-2024-28855 | Cross-site Scripting vulnerability in Zitadel ZITADEL, open source authentication management software, uses Go templates to render the login UI. | 6.1 |
| 2024-03-11 | CVE-2024-28197 | Session Fixation vulnerability in Zitadel Zitadel is an open source identity management system. | 7.5 |
| 2023-11-08 | CVE-2023-47111 | Unspecified vulnerability in Zitadel ZITADEL provides identity infrastructure. | 3.7 |