Apollo Federation is a framework that enables the composition of multiple GraphQL APIs into a single unified graph, with a gateway component orchestrating query plans across subgraphs. CVE-2026-32621 identifies a prototype pollution vulnerability (CWE-1321) in the federation-internals package used by Apollo Federation gateways. Prototype pollution occurs when an attacker can modify the Object.prototype, which is the base object from which all JavaScript objects inherit properties. By injecting or manipulating prototype-inheritable properties, attackers can alter the behavior of the gateway application, potentially leading to arbitrary code execution, data leakage, or denial of service. This vulnerability arises during query plan execution when a malicious client crafts GraphQL operations with field aliases or variable names that target prototype properties. Additionally, if a subgraph is compromised, it can send malicious JSON responses that pollute the Object.prototype on the gateway. The affected versions span multiple recent releases before the patched versions 2.9.6, 2.10.5, 2.11.6, 2.12.3, and 2.13.2. The vulnerability has a CVSS 3.1 score of 9.9 (critical), indicating network attack vector, low attack complexity, requiring privileges but no user interaction, with high impact on confidentiality and integrity, and low impact on availability. No public exploits are known yet, but the severity and ease of exploitation make this a critical risk for organizations using Apollo Federation in production environments.

The impact of this vulnerability is significant for organizations relying on Apollo Federation to unify their GraphQL APIs. Successful exploitation can allow attackers to modify the Object.prototype in the gateway, potentially enabling arbitrary code execution, unauthorized data access, or disruption of service. This undermines the confidentiality, integrity, and availability of the gateway and the connected subgraphs. Since the gateway is a central component in API orchestration, compromise can cascade, affecting multiple backend services and exposing sensitive data or critical business logic. Attackers with low privileges can exploit this remotely without user interaction, increasing the risk of widespread exploitation. Organizations in sectors with high API usage, such as technology, finance, healthcare, and e-commerce, face heightened risks of data breaches, service outages, and reputational damage if this vulnerability is exploited.

To mitigate this vulnerability, organizations should immediately upgrade Apollo Federation's federation-internals package to the fixed versions: 2.9.6, 2.10.5, 2.11.6, 2.12.3, or 2.13.2, depending on their current version. Additionally, implement strict input validation and sanitization on GraphQL queries, especially on field aliases and variable names, to prevent injection of prototype-inheritable properties. Monitor and audit subgraph responses for unexpected or malformed JSON payloads that could indicate attempts to exploit prototype pollution. Employ runtime application self-protection (RASP) or Web Application Firewalls (WAF) with custom rules to detect and block suspicious GraphQL operations targeting prototype properties. Limit privileges of clients interacting with the gateway to reduce the attack surface. Finally, maintain a robust incident response plan to quickly address any signs of exploitation or compromise related to this vulnerability.