Known Vulnerabilities for Apache APISIX by Apache Software Foundation
Listed below are 3 of the newest known vulnerabilities associated with "Apache APISIX" by "Apache Software Foundation".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-31924 json | Cleartext Transmission of Sensitive Information vulnerability in Apache APISIX. tencent-cloud-cls log export uses plaintext ... | Not Provided | 2026-04-14 | 2026-04-14 |
| CVE-2026-31923 json | Cleartext Transmission of Sensitive Information vulnerability in Apache APISIX. This can occur due to `ssl_verify` in openid... | Not Provided | 2026-04-14 | 2026-04-14 |
| CVE-2026-31908 json | Header injection vulnerability in Apache APISIX. The attacker can take advantage of certain configuration in forward-auth pl... | Not Provided | 2026-04-14 | 2026-04-16 |