Lucene search
K

5 matches found

CVE
CVE
added 2026/06/21 1:26 p.m.13 views

CVE-2026-56316

Cap-go before 12.128.2 contains an information disclosure vulnerability in the OPTIONS /build/upload/:jobId/* endpoint that allows unauthenticated attackers to enumerate valid builder job IDs by observing response discrepancies. Attackers can probe without authentication to distinguish valid job ...

6.9CVSS5.9AI score0.00241EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/29 12:0 a.m.6 views

JumpServer 安全漏洞

JumpServer is an open source bastion machine from China's Hangzhou Feizhiyun Information Technology Co. A security vulnerability exists in JumpServer versions prior to v3.10.6. The vulnerability stems from the fact that an authenticated user can upload malicious files via job IDs, compromising th...

5.3CVSS6.6AI score0.00235EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/11/30 11:15 p.m.4 views

CVE-2023-46326

ZStack Cloud version 3.10.38 and before allows unauthenticated API access to the list of active job UUIDs and the session ID for each of these. This leads to privilege escalation...

8.8CVSS5.7AI score0.00726EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/11/30 12:0 a.m.3 views

ZStack Security Vulnerabilities

ZStack is an open source IaaS Infrastructure as a Service software designed to automate data centers and manage compute, storage, and network resources through APIs. A security vulnerability exists in ZStack Cloud 3.10.38 and earlier versions that stems from allowing unauthenticated API access to...

8.8CVSS6.8AI score0.00726EPSS
Exploits1References1
OSV
OSV
added 2021/03/04 9:15 p.m.3 views

CVE-2021-26988

Clustered Data ONTAP versions prior to 9.3P21, 9.5P16, 9.6P12, 9.7P8 and 9.8 are susceptible to a vulnerability which could allow unauthorized tenant users to discover information related to converting a 7-Mode directory to Cluster-mode such as Storage Virtual Machine SVM names, volume names,...

3.5CVSS5.8AI score0.00384EPSS
Exploits0References1
Rows per page
Query Builder