Lucene search
+L

8 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.15 views

EUVD-2025-24153

Malicious code in bioql PyPI...

5.1CVSS6.6AI score0.00224EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/08/11 6:51 p.m.11 views

CVE-2025-8866

An authentication flaw has been discovered in YugabyteDB. Access is not properly enforced for the /metamaster/universe API endpoint. An unauthenticated attacker could exploit this flaw to obtain server networking configuration details, including private and public IP addresses and DNS records...

5.3CVSS7.3AI score0.00224EPSS
Exploits0References4
nvd
nvd
added 2025/08/11 5:15 p.m.32 views

CVE-2025-8866

YugabyteDB Anywhere web server does not properly enforce authentication for the /metamaster/universe API endpoint. An unauthenticated attacker could exploit this flaw to obtain server networking configuration details, including private and public IP addresses and DNS records...

5.1CVSS0.00224EPSS
Exploits0References1
cvelist
cvelist
added 2025/08/11 4:25 p.m.31 views

CVE-2025-8866

YugabyteDB Anywhere web server does not properly enforce authentication for the /metamaster/universe API endpoint. An unauthenticated attacker could exploit this flaw to obtain server networking configuration details, including private and public IP addresses and DNS records...

5.1CVSS0.00224EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/08/11 4:25 p.m.6 views

CVE-2025-8866

YugabyteDB Anywhere web server does not properly enforce authentication for the /metamaster/universe API endpoint. An unauthenticated attacker could exploit this flaw to obtain server networking configuration details, including private and public IP addresses and DNS records...

5.1CVSS7.3AI score0.00224EPSS
Exploits0References1
cve
cve
added 2025/08/11 4:25 p.m.30 views

CVE-2025-8866

Summary: CVE-2025-8866 affects the YugabyteDB Anywhere web server, where the /metamaster/universe API endpoint does not properly enforce authentication. What’s affected: YugabyteDB Anywhere web server (specific versions not enumerated in provided documents). Root cause (as described): Authenticat...

5.1CVSS7.3AI score0.00224EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/08/11 12:0 a.m.7 views

PT-2025-32557 · Yugabyte · Yugabytedb Anywhere

Name of the Vulnerable Software and Affected Versions: YugabyteDB Anywhere affected versions not specified Description: The YugabyteDB Anywhere web server does not properly enforce authentication for the /metamaster/universe API endpoint. An unauthenticated attacker could exploit this flaw to...

5.1CVSS7.1AI score0.00224EPSS
Exploits0References8
cnnvd
cnnvd
added 2025/08/11 12:0 a.m.5 views

YugabyteDB 安全漏洞

YugabyteDB is a high-performance transactional distributed SQL database for cloud-native applications from Yugabyte USA. A security vulnerability exists in YugabyteDB that stems from insufficient authentication of the /metamaster/universe API endpoint, which could lead to obtaining server network...

5.1CVSS7.4AI score0.00224EPSS
Exploits0References1
Rows per page
Query Builder