Lucene search
+L

5 matches found

GithubExploit
GithubExploit
added 2023/04/12 7:34 a.m.398 views

Exploit for Incorrect Authorization in Minio

PoC exploit for CVE-2021-43858, a vulnerability in MinIO. The ta...

8.8CVSS9.6AI score0.35462EPSS
Exploits3
GithubExploit
GithubExploit
added 2022/01/03 5:11 p.m.415 views

Exploit for Incorrect Authorization in Minio

It is an offensive tool for MinIO. The repository morhax/cve-202...

8.8CVSS9.2AI score0.35462EPSS
Exploits3
NVD
NVD
added 2021/12/27 10:15 p.m.31 views

CVE-2021-43858

MinIO is a Kubernetes native application for cloud storage. Prior to version RELEASE.2021-12-27T07-23-18Z, a malicious client can hand-craft an HTTP API call that allows for updating policy for a user and gaining higher privileges. The patch in version RELEASE.2021-12-27T07-23-18Z changes the...

8.8CVSS0.35462EPSS
Exploits3References5
CVE
CVE
added 2021/12/27 9:20 p.m.186 views

CVE-2021-43858

CVE-2021-43858 affects MinIO, a Kubernetes-native cloud storage server. A flaw in the admin API (AddUser) allowed a malicious client to hand-craft an HTTP request to update a user’s policy and gain elevated privileges prior to patch release. The fix in patch release RELEASE.2021-12-27T07-23-18Z c...

8.8CVSS8.5AI score0.35462EPSS
Exploits3References5Affected Software1
Cvelist
Cvelist
added 2021/12/27 9:20 p.m.38 views

CVE-2021-43858 User privilege escalation in MinIO

MinIO is a Kubernetes native application for cloud storage. Prior to version RELEASE.2021-12-27T07-23-18Z, a malicious client can hand-craft an HTTP API call that allows for updating policy for a user and gaining higher privileges. The patch in version RELEASE.2021-12-27T07-23-18Z changes the...

8.8CVSS8.8AI score0.35462EPSS
Exploits3References5
Rows per page
Query Builder