Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apache skywalking vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-13921
**Resolved** Only when using H2/MySQL/TiDB as Apache SkyWalking storage, there is a SQL injection vulnerability in the wildcard query cases.
Apache Skywalking 7.0.0
Apache Skywalking 6.5.0
Apache Skywalking 6.6.0
Apache Skywalking 8.0.0
Apache Skywalking 8.0.1
1 Github repository
7.5
CVSSv3
CVE-2020-9483
**Resolved** When use H2/MySQL/TiDB as Apache SkyWalking storage, the metadata query through GraphQL protocol, there is a SQL injection vulnerability, which allows to access unpexcted data. Apache SkyWalking 6.0.0 to 6.6.0, 7.0.0 H2/MySQL/TiDB storage implementations don't u...
Apache Skywalking
Apache Skywalking 7.0.0
4 Github repositories
7.5
CVSSv3
CVE-2022-36127
A vulnerability in Apache SkyWalking NodeJS Agent before 0.5.1. The vulnerability will cause NodeJS services that has this agent installed to be unavailable if the OAP is unhealthy and NodeJS agent can't establish the connection.
Apache Skywalking
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
hard-coded
CVE-2024-27202
NULL pointer dereference
CVE-2024-28075
CVE-2024-33608
CVE-2024-28889
CVE-2024-34572
template injection
CVE-2024-34351
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started