Lucene search
K

7 matches found

RedHat Linux
RedHat Linux
added 2026/07/01 7:33 p.m.7 views

github.com/prometheus/prometheus: Prometheus: Information disclosure of Azure OAuth client secret via config API

A flaw was found in Prometheus, an open-source monitoring system. The clientsecret field within the Azure Active Directory AD remote write OAuth configuration was incorrectly handled as a plain string instead of a secure Secret type. This misconfiguration allowed any user or process with access t...

7.5CVSS5.8AI score0.00326EPSS
Exploits0References9
Chainguard
Chainguard
added 2026/06/26 8:22 p.m.7 views

GHSA-W879-237Q-WC7R vulnerabilities

Vulnerabilities for packages: apko, crossplane-provider-azure-servicefabric, skaffold, consul, osv-scanner, gatekeeper-fips, mattermost-fips, cloudbeat-fips, crossplane-provider-azure-signalrservice, tekton-pipelines, seaweedfs-rocksdb-fips, kubescape-server, kaf, prometheus-operator,...

6.1AI score
Exploits0
Wolfi
Wolfi
added 2026/06/26 8:22 p.m.8 views

GHSA-W879-237Q-WC7R vulnerabilities

Vulnerabilities for packages: gitlab-kas, kyverno, openbao, chisel, neuvector-sigstore-interface, scorecard, gitlab-runner, fulcio, zarf, dagger, cilium, gomplate, k9s, cilium-cli, argo-cd, external-secrets-operator, grype, rancher, crossplane-provider-family-azure, zot, loki, fscrypt, tflint,...

6.1AI score
Exploits0
Wiz blog
Wiz blog
added 2026/02/18 7:9 p.m.6 views

Would You Click ‘Accept’? Automatically detecting malicious Azure OAuth applications using LLMs

How Wiz Research automates detection of emerging malicious Azure app and consent phishing campaigns...

5.4AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2025/04/30 6:15 p.m.5 views

CVE-2025-30390

Improper authorization in Azure allows an authorized attacker to elevate privileges over a network...

9.9CVSS5.5AI score0.00776EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2025/04/30 7:0 a.m.30 views

Azure ML Compute Elevation of Privilege Vulnerability

Improper authorization in Azure allows an authorized attacker to elevate privileges over a network...

9.9CVSS7AI score0.00776EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2023/10/05 1:3 a.m.50 views

Important: Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.8.0 security and bug fix update

The Migration Toolkit for Containers MTC 1.8.0 is now available. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

7.5CVSS6.6AI score0.01709EPSS
Exploits1References10
Rows per page
Query Builder