Vulnerabilities > Zstack

DATE	CVE	VULNERABILITY TITLE	RISK
2023-11-30	CVE-2023-46326	Insufficient Session Expiration vulnerability in Zstack ZStack Cloud version 3.10.38 and before allows unauthenticated API access to the list of active job UUIDs and the session ID for each of these. network low complexity zstack CWE-613	8.8
2021-09-09	CVE-2021-32836	Deserialization of Untrusted Data vulnerability in Zstack ZStack is open source IaaS(infrastructure as a service) software. network high complexity zstack CWE-502	8.1
2021-08-17	CVE-2021-32829	Incorrect Authorization vulnerability in Zstack Rest API ZStack is open source IaaS(infrastructure as a service) software aiming to automate datacenters, managing resources of compute, storage, and networking all by APIs. network low complexity zstack CWE-863 critical	9.9

Vulnerabilities > Zstack {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Zstack"}]}