Vulnerabilities
Tracked CVEs across the platform with severity, status, and remediation owner.
Total Vulnerabilities
5
Critical
1
across all assets
Open
4
not yet patched
Patched (30d)
1
+12%vs prior period
Vulnerability Register
Filter by severity, status, or service. Use bulk actions to assign or dismiss.
Ref | CVE | Title | Severity | Service | Status | Discovered | Owner | |
|---|---|---|---|---|---|---|---|---|
| VULN-2026-045 | CVE-2026-3141 | OpenSSL 3.2.1 Buffer Overflow api-gw-prod-us-east-1a-01 | Critical9.8 | api-gateway | in progress | 6/28/2026 | ||
| VULN-2026-044 | CVE-2026-3140 | Log4j 2.17.0 Information Disclosure checkout-prod-us-east-1a-01 | High7.5 | checkout-api | open | 6/26/2026 | ||
| VULN-2026-043 | CVE-2026-3139 | Node.js HTTP Request Smuggling billing-prod-us-east-1a-01 | High7.4 | billing-service | patched | 6/22/2026 | ||
| VULN-2026-042 | CVE-2026-3138 | PostgreSQL Privilege Escalation db-primary-us-east-1a-01 | Medium6.5 | postgres-primary | open | 6/20/2026 | ||
| VULN-2026-041 | CVE-2026-3137 | Redis Lua Sandbox Bypass redis-node-01 | Medium6.2 | redis-cluster | in progress | 6/18/2026 |
CVE-2026-3141
CriticalOpenSSL 3.2.1 Buffer Overflow
api-gw-prod-us-east-1a-01
6/28/2026in progress
CVE-2026-3140
HighLog4j 2.17.0 Information Disclosure
checkout-prod-us-east-1a-01
6/26/2026open
CVE-2026-3139
HighNode.js HTTP Request Smuggling
billing-prod-us-east-1a-01
6/22/2026patched
CVE-2026-3138
MediumPostgreSQL Privilege Escalation
db-primary-us-east-1a-01
6/20/2026open
CVE-2026-3137
MediumRedis Lua Sandbox Bypass
redis-node-01
6/18/2026in progress