Every CVE whose affected-product data names Vapor Project Vapor, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2020-15230 — CVSS 8.5 (high): Vapor is a web framework for Swift. In Vapor before version 4.29.4, Attackers can access data at arbitrary filesystem paths on the same…
CVE-2021-32742 — CVSS 7.5 (high): Vapor is a web framework for Swift. In versions 4.47.1 and prior, bug in the `Data.init(base32Encoded:)` function opens up the potential…
CVE-2021-21328 — CVSS 5.3 (medium): Vapor is a web framework for Swift. In Vapor before version 4.40.1, there is a DoS attack against anyone who Bootstraps a metrics backend…