Browse all 5 CVE security advisories affecting Akana. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Akana provides API management and governance solutions for enterprises, enabling secure integration and digital transformation. Historically, the platform has been susceptible to multiple vulnerability classes, including remote code execution (RCE), cross-site scripting (XSS), and privilege escalation, with five CVEs documented to date. These vulnerabilities often stem from improper input validation and access control flaws. While no major public security incidents have been widely reported, the consistent presence of critical vulnerabilities in past versions highlights the importance of timely patching and security hardening for organizations implementing Akana solutions.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-3930 | XML External Entity in Akana — Akana API PlatformCWE-611 | 6.3 | Medium | 2024-07-30 |
| CVE-2024-5250 | Overly Verbose Errors in SAML Integration — Akana API PlatformCWE-209 | 3.5 | Low | 2024-07-30 |
| CVE-2024-5249 | SAML Replay in Akana — Akana API PlatformCWE-294 | 5.4 | Medium | 2024-07-30 |
| CVE-2024-3826 | Broken SAML Validation — Akana API PlatformCWE-287 | 9.1AI | CriticalAI | 2024-07-02 |
| CVE-2024-2796 | SSRF in Akana API Platform — Akana API PlatformCWE-918 | 9.3 | Critical | 2024-04-18 |
This page lists every published CVE security advisory associated with Akana. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.