CVE-2025-57817

< 2.69.1

Fides is an open-source privacy engineering platform. Prior to version 2.69.1, the OAuth client creation and update endpoints of t

7.2HIGH

CVE-2025-57816

< 2.69.1

Fides is an open-source privacy engineering platform. Prior to version 2.69.1, the Fides Webserver API's built-in IP-based rate li

7.5HIGH

CVE-2025-57815

< 2.69.1

Fides is an open-source privacy engineering platform. Prior to version 2.69.1, the Fides Admin UI login endpoint relies on a gener

6.5MEDIUM

CVE-2025-57766

< 2.69.1

Fides is an open-source privacy engineering platform. Prior to version 2.69.1, admin UI user password changes in Fides do not inva

4.8MEDIUM

CVE-2024-52008

< 2.50.0

Fides is an open-source privacy engineering platform. The user invite acceptance API endpoint lacks server-side password policy en

8.8HIGH

CVE-2024-45053

>= 2.19.0 and < 2.44.0

Fides is an open-source privacy engineering platform. Starting in version 2.19.0 and prior to version 2.44.0, the Email Templating

9.1CRITICAL

CVE-2024-45052

< 2.44.0

Fides is an open-source privacy engineering platform. Prior to version 2.44.0, a timing-based username enumeration vulnerability e

5.3MEDIUM

CVE-2024-31223

>= 2.19.0 and < 2.39.2

Fides is an open-source privacy engineering platform, and SERVER_SIDE_FIDES_API_URL is a server-side configuration environment v

5.3MEDIUM

CVE-2024-38537

< 2.39.1

Fides is an open-source privacy engineering platform. fides.js, a client-side script used to interact with the consent managemen

NONE

CVE-2024-35189

< 2.37.0

Fides is an open-source privacy engineering platform. The Fides webserver has a number of endpoints that retrieve `ConnectionConfi

6.5MEDIUM

CVE-2024-34715

< 2.37.0

Fides is an open-source privacy engineering platform. The Fides webserver requires a connection to a hosted PostgreSQL database fo

2.3LOW

CVE-2023-48224

< 2.24.0

Fides is an open-source privacy engineering platform for managing the fulfillment of data privacy requests in a runtime environmen

8.2HIGH

CVE-2023-47114

>= 2.15.1 and < 2.23.3

Fides is an open-source privacy engineering platform for managing the fulfillment of data privacy requests in your runtime environ

4.3MEDIUM

CVE-2023-46126

< 2.22.1

Fides is an open-source privacy engineering platform for managing the fulfillment of data privacy requests in runtime environments

3.9LOW

CVE-2023-46125

< 2.22.1

Fides is an open-source privacy engineering platform for managing the fulfillment of data privacy requests in a runtime environmen

6.5MEDIUM

CVE-2023-46124

< 2.22.1

Fides is an open-source privacy engineering platform for managing the fulfillment of data privacy requests in runtime environments

8.2HIGH

CVE-2023-41319

>= 2.11.0 and < 2.19.0

Fides is an open-source privacy engineering platform for managing the fulfillment of data privacy requests in a runtime environmen

8.8HIGH

CVE-2023-37481

>= 2.11.0 and < 2.16.0

Fides is an open-source privacy engineering platform for managing data privacy requests and privacy regulations. The Fides webserv

2.7LOW

CVE-2023-37480

>= 2.11.0 and < 2.16.0

Fides is an open-source privacy engineering platform for managing data privacy requests and privacy regulations. The Fides webserv

2.7LOW

CVE-2023-36827

< 2.15.1

Fides is an open-source privacy engineering platform for managing the fulfillment of data privacy requests in a runtime environmen

7.5HIGH