This page aggregates publicly disclosed CVE and security risk information related to europa, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-3475 | Allocation of Resources Without Limits or Throttling, Incorrect Authorization vulnerability in Drupal WEB-T allows Excessive Allocation, Content Spoofing.This issue affects WEB-T: from 0.0.0 before 1.1.0. | [email protected] | 6.5 | 0.19% | 2025-04-09 | 2025-06-02 |
| CVE-2021-40855 | The EU Technical Specifications for Digital COVID Certificates before 1.1 mishandle certificate governance. A non-production public key certificate could have been used in production. | [email protected] | 9.8 | 0.27% | 2022-01-21 | 2024-11-21 |
| CVE-2019-18633 | European Commission eIDAS-Node Integration Package before 2.3.1 has Missing Certificate Validation because a certain ExplicitKeyTrustEvaluator return value is not checked. NOTE: only 2.1 is confirmed to be affected. | [email protected] | 9.8 | 0.20% | 2019-10-30 | 2024-11-21 |
| CVE-2019-18632 | European Commission eIDAS-Node Integration Package before 2.3.1 allows Certificate Faking because an attacker can sign a manipulated SAML response with a forged certificate. | [email protected] | 9.8 | 0.20% | 2019-10-30 | 2024-11-21 |