Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2026/05/11 8:25 p.m.10 views

CVE-2026-42160

Data Space Portal is an open-source Software as a Service SaaS solution designed to streamline Dataspace management. From version 2.1.1 to before version 7.3.2, there is insufficient authorization in the dataspace-portal backend regarding self-registered "PENDING" organization / user accounts. Th...

10CVSS5.7AI score0.00249EPSS
Exploits0References1
NVD
NVD
added 2026/05/08 8:16 p.m.23 views

CVE-2026-42160

Data Space Portal is an open-source Software as a Service SaaS solution designed to streamline Dataspace management. From version 2.1.1 to before version 7.3.2, there is insufficient authorization in the dataspace-portal backend regarding self-registered "PENDING" organization / user accounts. Th...

10CVSS0.00249EPSS
Exploits0References2
CVE
CVE
added 2026/05/08 7:46 p.m.17 views

CVE-2026-42160

Data Space Portal (open-source SaaS) has a vulnerability in the backend authorization for self-registered PENDING organizations/users, affecting versions 2.1.1 up to before 7.3.2. The root cause is insufficient authorization checks, combined with client-side enforcement of server-side security, e...

10CVSS5.7AI score0.00249EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/08 7:46 p.m.16 views

EUVD-2026-28817

Data Space Portal is an open-source Software as a Service SaaS solution designed to streamline Dataspace management. From version 2.1.1 to before version 7.3.2, there is insufficient authorization in the dataspace-portal backend regarding self-registered "PENDING" organization / user accounts. Th...

10CVSS5.7AI score0.00249EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/08 7:46 p.m.7 views

CVE-2026-42160

Data Space Portal is an open-source Software as a Service SaaS solution designed to streamline Dataspace management. From version 2.1.1 to before version 7.3.2, there is insufficient authorization in the dataspace-portal backend regarding self-registered "PENDING" organization / user accounts. Th...

10CVSS5.7AI score0.00249EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/05/08 7:46 p.m.37 views

CVE-2026-42160 Data Space Portal: Incorrect Authorization and Client-Side Enforcement of Server-Side Security in ghcr.io/sovity/ds-portal-ce-backend

Data Space Portal is an open-source Software as a Service SaaS solution designed to streamline Dataspace management. From version 2.1.1 to before version 7.3.2, there is insufficient authorization in the dataspace-portal backend regarding self-registered "PENDING" organization / user accounts. Th...

10CVSS0.00249EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/08 7:46 p.m.9 views

CVE-2026-42160 Data Space Portal: Incorrect Authorization and Client-Side Enforcement of Server-Side Security in ghcr.io/sovity/ds-portal-ce-backend

Data Space Portal is an open-source Software as a Service SaaS solution designed to streamline Dataspace management. From version 2.1.1 to before version 7.3.2, there is insufficient authorization in the dataspace-portal backend regarding self-registered "PENDING" organization / user accounts. Th...

10CVSS5.7AI score0.00249EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.18 views

PT-2026-39190

Name of the Vulnerable Software and Affected Versions Data Space Portal versions 2.1.1 through 7.3.1 Description Data Space Portal is an open-source Software as a Service SaaS solution for Dataspace management. The backend contains insufficient authorization regarding self-registered organization...

10CVSS5.8AI score0.00249EPSS
Exploits0References6
Rows per page
Query Builder