Vulnerabilidades em ethyca
22 resultadosCVE-2024-38537NONEInclusion of Untrusted polyfill.io Code Vulnerability in fides.jsEPSS 1.4%CVE-2024-45053CRITICALRemote Code Execution Vulnerability via SSTI in Fides Webserver Jinja Email Templating EngineEPSS 1.3%CVE-2024-31223MEDIUMFides Information Disclosure Vulnerability in Privacy Center of SERVER_SIDE_FIDES_API_URLEPSS 1.1%CVE-2023-36827HIGHFides vulnerable to Path Traversal in Webserver APIEPSS 1.1%CVE-2023-48224HIGHCryptographically Weak Generation of One-Time Codes for Identity Verification in ethyca-fidesEPSS 1.0%CVE-2023-41319HIGHRemote Code Execution in Custom Integration Upload in FidesEPSS 0.8%CVE-2023-46125MEDIUMFides Information Disclosure Vulnerability in Config API EndpointEPSS 0.7%CVE-2023-46124HIGHServer-Side Request Forgery Vulnerability in Custom Integration UploadEPSS 0.7%CVE-2023-47114MEDIUMEthyca Fides HTML Injection Vulnerability in HTML-Formatted DSR PackagesEPSS 0.6%CVE-2023-46126LOWFides JavaScript Injection Vulnerability in Privacy Center URLEPSS 0.6%CVE-2023-37481LOWFides Webserver Vulnerable to SVG Bomb File UploadsEPSS 0.6%CVE-2024-35189MEDIUMSensitive Data Disclosure Vulnerability in Connection Configuration Endpoints in FidesEPSS 0.6%CVE-2023-37480LOWFides Webserver Vulnerable to Zip Bomb File UploadsEPSS 0.6%CVE-2024-45052MEDIUMFides Webserver Authentication Timing-Based Username Enumeration VulnerabilityEPSS 0.6%CVE-2024-52008LOWPassword Policy Bypass Vulnerability in Fides WebserverEPSS 0.5%CVE-2025-57816MEDIUMFides Webserver API Rate Limiting Vulnerability in Proxied EnvironmentsEPSS 0.4%CVE-2025-57817HIGHFides Webserver API is Vulnerable to OAuth Client Privilege EscalationEPSS 0.4%CVE-2026-42303MEDIUMFides: Privacy Request Identity Verification Bypass Vulnerability via Duplicate DetectionEPSS 0.3%CVE-2026-44541HIGHFides: DOM-based XSS vulnerability in fides.js via fides_description overrideEPSS 0.3%CVE-2025-57815LOWFides Lacks Brute-Force Protections on Authentication EndpointsEPSS 0.3%