dapr — Vulnerabilities & Security Advisories 3

All 3 CVE vulnerabilities found in dapr, with AI-generated Chinese analysis, references, and POCs.

Vendor: dapr

CVE ID	Title	CVSS	Severity	Published
CVE-2026-41491	Dapr: Service Invocation path traversal ACL bypass CWE-22	8.1	High	2026-05-08
CVE-2024-35223	Dapr API Token Exposure CWE-200	5.3	Medium	2024-05-23
CVE-2023-37918	API token authentication bypass in HTTP endpoints in Dapr CWE-287	6.8	Medium	2023-07-21

All 3 known CVE vulnerabilities affecting dapr with full Chinese analysis, references, and POCs where available.