Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/02/06 1:10 a.m.8 views

CVE-2022-21646

SpiceDB is a database system for managing security-critical application permissions. Any user making use of a wildcard relationship under the right hand branch of an exclusion or within an intersection operation will see Lookup/LookupResources return a resource as "accessible" if it is not...

8.1CVSS6.7AI score0.01472EPSS
Exploits0References1
NVD
NVD
added 2022/01/11 10:15 p.m.39 views

CVE-2022-21646

SpiceDB is a database system for managing security-critical application permissions. Any user making use of a wildcard relationship under the right hand branch of an exclusion or within an intersection operation will see Lookup/LookupResources return a resource as "accessible" if it is not...

8.1CVSS0.01472EPSS
Exploits0References4
CVE
CVE
added 2022/01/11 9:50 p.m.97 views

CVE-2022-21646

SpiceDB vulnerability CVE-2022-21646 affects wildcard handling in lookups: using a wildcard on the right side of an intersection or within an exclusion can cause Lookup/LookupResources to treat resources as accessible when they are not. In v1.3.0 the wildcard was ignored in dispatch, making the b...

8.1CVSS8AI score0.01472EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2022/01/11 9:50 p.m.5 views

CVE-2022-21646 Lookup operations do not take into account wildcards in SpiceDB

SpiceDB is a database system for managing security-critical application permissions. Any user making use of a wildcard relationship under the right hand branch of an exclusion or within an intersection operation will see Lookup/LookupResources return a resource as "accessible" if it is not...

8.1CVSS7.1AI score0.01472EPSS
Exploits0References4
OSV
OSV
added 2022/01/11 9:50 p.m.33 views

CVE-2022-21646 Lookup operations do not take into account wildcards in SpiceDB

SpiceDB is a database system for managing security-critical application permissions. Any user making use of a wildcard relationship under the right hand branch of an exclusion or within an intersection operation will see Lookup/LookupResources return a resource as "accessible" if it is not...

8.1CVSS7.8AI score0.01472EPSS
Exploits0References6
Rows per page
Query Builder