Lucene search
K

4 matches found

NVD
NVD
added 2026/07/08 3:16 p.m.8 views

CVE-2026-15036

A vulnerability was determined in Harness up to 2.28.2. This vulnerability affects the function getAuthorizedSpaces of the file app/api/controller/gitspace/listall.go of the component gitspaces Endpoint. Executing a manipulation can lead to authorization bypass. The attack can be executed remotel...

5.3CVSS0.00396EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/07/08 12:0 a.m.6 views

PT-2026-56457

Name of the Vulnerable Software and Affected Versions Harness versions prior to 2.28.2 Description A remote authorization bypass exists within the gitspaces component. The issue resides in the getAuthorizedSpaces function located in the app/api/controller/gitspace/list all.go file. An attacker ca...

5.3CVSS6.2AI score0.00396EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2026/05/29 12:0 a.m.11 views

PT-2026-44853

Name of the Vulnerable Software and Affected Versions Indian Motorcycle Scout Bobber + Tech version 2025 Description Improper handling of physical conditions in the bike-shutdown control allows a physical attacker with access to the Wireless Control Module WCM wiring harness to bypass the...

4.6CVSS5.8AI score0.0016EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/09/21 2:32 a.m.11 views

CVE-2025-10760 Harness lookup_repo.go LookupRepo server-side request forgery

A flaw has been found in Harness 3.3.0. This impacts the function LookupRepo of the file app/api/controller/gitspace/lookuprepo.go. Executing manipulation of the argument url can lead to server-side request forgery. The attack may be launched remotely. The exploit has been published and may be...

6.5CVSS0.00311EPSS
Exploits0References5
Rows per page
Query Builder