5 matches found
Exploit for Incorrect Authorization in Minio
PoC exploit for CVE-2021-43858, a vulnerability in MinIO. The ta...
Exploit for Incorrect Authorization in Minio
It is an offensive tool for MinIO. The repository morhax/cve-202...
CVE-2021-43858
MinIO is a Kubernetes native application for cloud storage. Prior to version RELEASE.2021-12-27T07-23-18Z, a malicious client can hand-craft an HTTP API call that allows for updating policy for a user and gaining higher privileges. The patch in version RELEASE.2021-12-27T07-23-18Z changes the...
CVE-2021-43858
CVE-2021-43858 affects MinIO, a Kubernetes-native cloud storage server. A flaw in the admin API (AddUser) allowed a malicious client to hand-craft an HTTP request to update a user’s policy and gain elevated privileges prior to patch release. The fix in patch release RELEASE.2021-12-27T07-23-18Z c...
CVE-2021-43858 User privilege escalation in MinIO
MinIO is a Kubernetes native application for cloud storage. Prior to version RELEASE.2021-12-27T07-23-18Z, a malicious client can hand-craft an HTTP API call that allows for updating policy for a user and gaining higher privileges. The patch in version RELEASE.2021-12-27T07-23-18Z changes the...