Every CVE whose affected-product data names Openfga Helm Charts, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2025-55213 — CVSS 9.8 (critical): OpenFGA is a high-performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. OpenFGA…
CVE-2024-56323 — CVSS 9.8 (critical): OpenFGA is an authorization/permission engine. IN OpenFGA v1.3.8 to v1.8.2 (Helm chart openfga-0.1.38 to openfga-0.2.19, docker v1.3.8 to…
CVE-2025-46331 — CVSS 9.8 (critical): OpenFGA is a high-performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. OpenFGA…
CVE-2025-25196 — CVSS 9.8 (critical): OpenFGA is a high-performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. OpenFGA <…
CVE-2025-64751 — CVSS 8.8 (high): OpenFGA is a high-performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. OpenFGA…
CVE-2025-48371 — CVSS 8.8 (high): OpenFGA is an authorization/permission engine. OpenFGA versions 1.8.0 through 1.8.12 (corresponding to Helm chart openfga-0.2.16 through…
CVE-2026-24851 — CVSS 8.8 (high): OpenFGA is a high-performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. OpenFGA…
CVE-2026-34972 — CVSS 5.0 (medium): OpenFGA is a high-performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. From 1.8.0…
CVE-2026-41131 — CVSS 5.0 (medium): OpenFGA is an authorization/permission engine built for developers. Prior to version 1.14.1, in specific scenarios, models using conditions…
CVE-2026-48096 — CVSS 5.0 (medium): OpenFGA is an authorization/permission engine built for developers. Prior to version 1.16.0, when iterator caching is enabled, two distinct…