| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-32237 | @backstage/plugin-scaffolder-backend: Possible exposure of defaultEnvironment secrets using dry-run endpoint | @backstage | plugin-scaffolder-backend | Medium | 4.4 | 2026-03-12 18:38:57 | Deep Dive |
| CVE-2026-32236 | @backstage/plugin-auth-backend: SSRF in experimental CIMD metadata fetch | @backstage | plugin-auth-backend | 低危 | - | 2026-03-12 18:37:11 | Deep Dive |
| CVE-2026-32235 | @backstage/plugin-auth-backend: OAuth redirect URI allowlist bypass | @backstage | plugin-auth-backend | Medium | 5.9 | 2026-03-12 18:35:06 | Deep Dive |
| CVE-2026-29186 | @backstage/plugin-techdocs-node: TechDocs Mkdocs Configuration Key Enables Arbitrary Code Execution | backstage | backstage | High | 7.7 | 2026-03-07 15:03:51 | Deep Dive |
| CVE-2026-29184 | @backstage/plugin-scaffolder-backend: Potential Session Token Exfiltration via Log Redaction Bypass | backstage | backstage | Low | 2.0 | 2026-03-07 15:03:18 | Deep Dive |
| CVE-2026-29185 | @backstage/integration: Potential reading of SCM URLs using built in token | backstage | backstage | Low | 2.7 | 2026-03-07 15:02:05 | Deep Dive |
| CVE-2026-25152 | @backstage/plugin-techdocs-node vulnerable to possible Path Traversal in TechDocs Local Generator | backstage | backstage | Medium | 5.3 | 2026-01-30 21:51:22 | Deep Dive |
| CVE-2026-25153 | @backstage/plugin-techdocs-node vulnerable to arbitrary code execution via MkDocs hooks | backstage | backstage | High | 7.7 | 2026-01-30 21:31:59 | Deep Dive |
| CVE-2026-24048 | Backstage has a Possible SSRF when reading from allowed URL's in `backend.reading.allow` | backstage | backstage | Low | 3.5 | 2026-01-21 22:51:44 | Deep Dive |
| CVE-2026-24047 | @backstage/cli-common has a possible `resolveSafeChildPath` Symlink Chain Bypass | backstage | backstage | Medium | 6.3 | 2026-01-21 22:45:07 | Deep Dive |
| CVE-2026-24046 | Backstage has a Possible Symlink Path Traversal in Scaffolder Actions | backstage | backstage | High | 7.1 | 2026-01-21 22:36:31 | Deep Dive |
| CVE-2025-55285 | @backstage/plugin-scaffolder-backend Template Secret Leakage in Logs in Scaffolder When Using `fetch:template` | backstage | backstage | Low | 2.6 | 2025-08-15 17:10:27 | Deep Dive |
| CVE-2025-32791 | Permission policy information leakage in Backstage permission system | backstage | backstage | Medium | 4.3 | 2025-04-16 21:46:24 | Deep Dive |
| CVE-2024-53983 | Server-side request forgery in Backstage Scaffolder plugin | backstage | backstage | Medium | 5.4 | 2024-11-29 18:53:13 | Deep Dive |
| CVE-2024-47762 | Unexpected visibility of environment variable configurations in @backstage/plugin-app-backend | backstage | backstage | Medium | 5.8 | 2024-10-03 17:14:35 | Deep Dive |
| CVE-2024-45815 | Prototype pollution in @backstage/plugin-catalog-backend | backstage | backstage | Medium | 6.5 | 2024-09-17 20:14:31 | Deep Dive |
| CVE-2024-45816 | Storage bucket Directory Traversal in @backstage/plugin-techdocs-backend | backstage | backstage | Medium | 6.5 | 2024-09-17 20:13:29 | Deep Dive |
| CVE-2024-46976 | Circumvention of cross site scripting Protection in @backstage/plugin-techdocs-backend | backstage | backstage | Medium | 6.5 | 2024-09-17 20:12:35 | Deep Dive |
| CVE-2024-26150 | `@backstage/backend-common` vulnerable to path traversal through symlinks | backstage | backstage | High | 8.7 | 2024-02-23 15:46:36 | Deep Dive |
| CVE-2023-35926 | Insecure sandbox in Backstage Scaffolder plugin | backstage | backstage | High | 8.0 | 2023-06-22 13:29:03 | Deep Dive |