This page lists publicly disclosed CVE vulnerabilities affecting apache servicecomb (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2023-44313 | Server-Side Request Forgery (SSRF) vulnerability in Apache ServiceComb Service-Center. Attackers can obtain sensitive server information through specially crafted requests.This issue affects Apache ServiceComb before 2.1.0(include). Users are recommended to upgrade to version 2.2.0, which fixes the issue. | [email protected] | 7.6 | 3.46% | 2024-01-31 | 2026-06-17 |
| CVE-2023-44312 | Exposure of Sensitive Information to an Unauthorized Actor in Apache ServiceComb Service-Center.This issue affects Apache ServiceComb Service-Center before 2.1.0 (include). Users are recommended to upgrade to version 2.2.0, which fixes the issue. | [email protected] | 5.8 | 0.81% | 2024-01-31 | 2026-06-17 |
| CVE-2021-21501 | Improper configuration will cause ServiceComb ServiceCenter Directory Traversal problem in ServcieCenter 1.x.x versions and fixed in 2.0.0. | [email protected] | 7.5 | 4.44% | 2021-08-10 | 2026-06-16 |