VDB
CVE-2024-32001
CVE-2024-32001
PUBLISHED
CVSS 2.200000047683716 LOW
SpiceDB: LookupSubjects may return partial results if a specific kind of relation is used
EPSS 0.30% · 53.8th percentile
Risk Scores
CVSS v3.1
2.200000047683716
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:N
EPSS Score
0.30%
53.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| authzed | spicedb | < 1.30.1, 0 |
| github.com | authzed/spicedb | 0 |
Timeline
- Jan 21, 1970 Security Advisory
- Apr 10, 2024 CVE Published
- Apr 11, 2024 EPSS Score
- May 6, 2024 EPSS Score
- May 31, 2024 EPSS Score
- Jun 25, 2024 EPSS Score
- Jul 20, 2024 EPSS Score
- Aug 14, 2024 EPSS Score
- Sep 8, 2024 EPSS Score
- Oct 3, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
- Oct 29, 2024 EPSS Score
References
- https://github.com/authzed/spicedb/security/advisories/GHSA-j85q-46hg-36p2 url
- https://github.com/authzed/spicedb/commit/a244ed1edfaf2382711dccdb699971ec97190c7b url
- https://github.com/authzed/spicedb/releases/tag/v1.30.1 url
- https://nvd.nist.gov/vuln/detail/CVE-2024-32001 advisory
- https://github.com/authzed/spicedb package