Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Rockylinux
Rockylinuxadded 2023/01/23 2:31 p.m.10 views

sssd bug fix and enhancement update

An update is available for sssd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The System Security Services Daemon SSSD service provides a set of daemons to...

1.5AI score
Exploits0
Veracode
Veracodeadded 2021/11/16 4:25 a.m.16 views

Authentication Bypass

github.com/minio/console is vulnerable to authentication bypass. When external IDP is enabled in Operator Console, operator does not perform sufficient validation checks on 'Oauth2' login flow, leading to authentication bypass...

9.8CVSS3.5AI score0.86242EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blogadded 2021/11/15 11:16 p.m.56 views

Authentication bypass issue in the Operator Console

During an internal security audit, we detected an authentication bypass issue in the Operator Console when an external IDP is enabled. The security issue has been reported internally. We have not observed this exploit in the wild or reported elsewhere in the community at large. All users are...

9.8CVSS1.9AI score0.86242EPSS
Exploits1References4Affected Software1
OSV
OSVadded 2021/11/15 9:15 p.m.17 views

CVE-2021-41266

Minio console is a graphical user interface for the for MinIO operator. Minio itself is a multi-cloud object storage project. Affected versions are subject to an authentication bypass issue in the Operator Console when an external IDP is enabled. All users on release v0.12.2 and before are affect...

9.8CVSS7.1AI score0.86242EPSS
Exploits1References2
Prion
Prionadded 2021/11/15 9:15 p.m.11 views

Authentication flaw

Minio console is a graphical user interface for the for MinIO operator. Minio itself is a multi-cloud object storage project. Affected versions are subject to an authentication bypass issue in the Operator Console when an external IDP is enabled. All users on release v0.12.2 and before are affect...

6.8CVSS9.6AI score0.86242EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2021/11/15 8:20 p.m.13 views

CVE-2021-41266 Authentication bypass issue in the Operator Console

Minio console is a graphical user interface for the for MinIO operator. Minio itself is a multi-cloud object storage project. Affected versions are subject to an authentication bypass issue in the Operator Console when an external IDP is enabled. All users on release v0.12.2 and before are affect...

8.6CVSS9.9AI score0.86242EPSS
Exploits1References2
CVE
CVEadded 2021/11/15 8:20 p.m.79 views

CVE-2021-41266

CVE-2021-41266 affects MinIO Console (the Operator Console UI for the MinIO Operator). The vulnerability is an authentication bypass in the Operator Console when an external IDP is enabled, impacting all users on release v0.12.2 and earlier. A fix is available in v0.12.3 and newer. If upgrading i...

9.8CVSS9.4AI score0.86242EPSS
In wildExploits1References2Affected Software1
Rows per page
Query Builder