@apollo/gateway
This hub aggregates every CVE we track for @apollo/gateway, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
4
CVEs tracked
1
Critical
3
High
0
In CISA KEV
Severity distribution
HIGH3CRITICAL1
Monthly trend
0
1
0
0
0
0
0
0
0
2
0
0
0
0
0
0
0
0
0
0
1
0
0
0
2024-072026-06
Latest CVEs
The 4 most recently published vulnerabilities affecting @apollo/gateway.
- CVE-2026-32621Apollo Federation has prototype pollution via incomplete key sanitization9.9
- CVE-2025-32031Apollo Gateway Query Planner Vulnerable to Excessive Resource Consumption via Optimization Bypass7.5
- CVE-2025-32030Apollo Gateway Query Planner Vulnerable to Excessive Resource Consumption via Named Fragment Expansion7.5
- CVE-2024-43414Apollo Query Planner and Apollo Gateway may infinitely loop on sufficiently complex queries7.5
Product normalization is registry-driven with AI assist and human review. How it works