Vulnerabilities > Zitadel > Zitadel > 1.50.2

DATE CVE VULNERABILITY TITLE RISK
2024-09-20 CVE-2024-46999 Unspecified vulnerability in Zitadel
Zitadel is an open source identity management platform.
network
low complexity
zitadel
6.5
2024-09-20 CVE-2024-47000 Unspecified vulnerability in Zitadel
Zitadel is an open source identity management platform.
network
low complexity
zitadel
7.5
2024-09-20 CVE-2024-47060 Incorrect Authorization vulnerability in Zitadel
Zitadel is an open source identity management platform.
network
low complexity
zitadel CWE-863
6.5
2024-05-01 CVE-2024-32967 Unspecified vulnerability in Zitadel
Zitadel is an open source identity management system.
network
low complexity
zitadel
5.3
2024-04-26 CVE-2024-32868 Improper Restriction of Excessive Authentication Attempts vulnerability in Zitadel
ZITADEL provides users the possibility to use Time-based One-Time-Password (TOTP) and One-Time-Password (OTP) through SMS and Email.
network
low complexity
zitadel CWE-307
8.1
2024-03-27 CVE-2024-29891 Cross-site Scripting vulnerability in Zitadel
ZITADEL users can upload their own avatar image and various image types are allowed.
network
low complexity
zitadel CWE-79
8.7
2024-03-27 CVE-2024-29892 Incorrect Authorization vulnerability in Zitadel
ZITADEL, open source authentication management software, uses Go templates to render the login UI.
network
low complexity
zitadel CWE-863
4.9
2024-03-18 CVE-2024-28855 Cross-site Scripting vulnerability in Zitadel
ZITADEL, open source authentication management software, uses Go templates to render the login UI.
network
low complexity
zitadel CWE-79
6.1
2024-03-11 CVE-2024-28197 Session Fixation vulnerability in Zitadel
Zitadel is an open source identity management system.
high complexity
zitadel CWE-384
7.5
2023-11-08 CVE-2023-47111 Unspecified vulnerability in Zitadel
ZITADEL provides identity infrastructure.
network
high complexity
zitadel
3.7