Technical advisories

This section contains technical advisories, security bulletins, and other important and timely information related to Ed-Fi offerings.

The following list is sorted with the latest advisory at the top.

• Advisory: String Validation Divergence
• Advisory: Microsoft SqlClient Vulnerability
• Advisory: Potential for Broken Authorization When Using Admin App or Admin API
• Advisory: ReadChanges action grants access to Read and Update actions
• Advisory: Non-Enforcement of Profile Usage
• Advisory: Swagger UI XSS Vulnerability
• Advisory: API Case Sensitivity Issue
• Advisory: Analysis of the Log4j Vulnerability CVE-2021-44228