Vulnerabilities > Zstack > Zstack > 0.7
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-30 | CVE-2023-46326 | Insufficient Session Expiration vulnerability in Zstack ZStack Cloud version 3.10.38 and before allows unauthenticated API access to the list of active job UUIDs and the session ID for each of these. | 8.8 |
| 2021-09-09 | CVE-2021-32836 | Deserialization of Untrusted Data vulnerability in Zstack ZStack is open source IaaS(infrastructure as a service) software. | 6.8 |