Lucene search
K

1212 matches found

Github Security Blog
Github Security Blog
added 2026/05/23 12:18 a.m.23 views

Nezha Monitoring: Nezha WebSocket server stream discloses cross-tenant server telemetry to authenticated members

Summary Any authenticated non-admin member can connect to the server-status WebSocket and receive telemetry for all servers, including servers owned by other users. The normal server list API filters objects by HasPermission, but the WebSocket stream treats the presence of any authenticated user ...

6.5CVSS5.8AI score0.0027EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/23 12:0 a.m.18 views

PT-2026-42873

Name of the Vulnerable Software and Affected Versions Arcane versions prior to 1.19.2 Description The "PUT /api/environments/id/templates/variables" endpoint, used to write the system-wide .env.global file for variable substitution in project compose files, lacks an admin authorization check. Any...

8.8CVSS6.5AI score0.00245EPSS
Exploits0References10
Cvelist
Cvelist
added 2026/05/22 6:52 p.m.13 views

CVE-2026-40166 authentik: Non-admin user can retrieve confidential OAuth client_secret via /api/v3/oauth2/access_tokens/

authentik is an open-source identity provider. In versions prior to 2025.12.5 and 2026.2.0-rc1 through 2026.2.2, authenticated non-admin users with at least one OAuth2 access token can retrieve the clientsecret of confidential OAuth2 providers they have previously authenticated against, exposing...

7.1CVSS0.00337EPSS
Exploits0References3
CVE
CVE
added 2026/05/22 6:52 p.m.46 views

CVE-2026-40166

authentik contains an elevation of privilege in its OAuth2 access_tokens API (GET /api/v3/oauth2/access_tokens/) where authenticated non-admin users with at least one OAuth2 access token can retrieve the client_secret of confidential providers they previously authenticated against. This exposed i...

7.1CVSS5.7AI score0.00337EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/22 6:52 p.m.8 views

CVE-2026-40166 authentik: Non-admin user can retrieve confidential OAuth client_secret via /api/v3/oauth2/access_tokens/

authentik is an open-source identity provider. In versions prior to 2025.12.5 and 2026.2.0-rc1 through 2026.2.2, authenticated non-admin users with at least one OAuth2 access token can retrieve the clientsecret of confidential OAuth2 providers they have previously authenticated against, exposing...

7.1CVSS5.7AI score0.00337EPSS
Exploits0References3
NVD
NVD
added 2026/05/22 4:16 p.m.14 views

CVE-2026-9251

Missing authorization in the entry status management feature in Devolutions Server allows a non-administrator authenticated user to bypass the administrator-enforced Pending Approval flow and gain access to an entry's data via a crafted status change request. This issue affects : Devolutions Serv...

5.4CVSS0.00142EPSS
Exploits0References1
CVE
CVE
added 2026/05/22 3:29 p.m.29 views

CVE-2026-9251

The CVE-2026-9251 issue affects Devolutions Server versions 2026.1.6.0–2026.1.16.0 and 2025.3.20.0 and earlier. The vulnerability arises from missing authorization in the entry status management feature, allowing a non-administrator authenticated user to bypass the administrator-enforced Pending ...

5.4CVSS5.8AI score0.00142EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/05/22 3:29 p.m.15 views

CVE-2026-9251

Missing authorization in the entry status management feature in Devolutions Server allows a non-administrator authenticated user to bypass the administrator-enforced Pending Approval flow and gain access to an entry's data via a crafted status change request. This issue affects : Devolutions Serv...

0.00142EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/22 3:29 p.m.7 views

CVE-2026-9251

Missing authorization in the entry status management feature in Devolutions Server allows a non-administrator authenticated user to bypass the administrator-enforced Pending Approval flow and gain access to an entry's data via a crafted status change request. This issue affects : Devolutions Serv...

5.4CVSS5.8AI score0.00142EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/22 3:29 p.m.11 views

CVE-2026-9251

Missing authorization in the entry status management feature in Devolutions Server allows a non-administrator authenticated user to bypass the administrator-enforced Pending Approval flow and gain access to an entry's data via a crafted status change request. This issue affects : Devolutions Serv...

5.8AI score0.00142EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/22 12:0 a.m.10 views

PT-2026-42826

Name of the Vulnerable Software and Affected Versions authentik versions prior to 2025.12.5 authentik versions 2026.2.0-rc1 through 2026.2.2 Description Authenticated non-admin users possessing at least one OAuth2 access token can retrieve the client secret of confidential OAuth2 providers they...

7.1CVSS5.8AI score0.00337EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/05/22 12:0 a.m.17 views

PT-2026-42796

Missing authorization in the entry status management feature in Devolutions Server allows a non-administrator authenticated user to bypass the administrator-enforced Pending Approval flow and gain access to an entry's data via a crafted status change request. This issue affects : Devolutions Serv...

5.8AI score0.00142EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/05/21 4:36 p.m.13 views

OpenMetadata: TEST_CONNECTION workflow leaks ingestion-bot JWT and database password to regular users

This is not applicable if an application is configuring the Secrets Store to store credentials. Please make sure to follow the best practices when deploying in production In OpenMetadata 1.12.1, a non-admin SSO user can trigger a TESTCONNECTION workflow for a Database Service and receive, in the...

8.3CVSS5.8AI score0.00241EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/21 12:0 a.m.11 views

PT-2026-42613

This is not applicable if an application is configuring the Secrets Store to store credentials. Please make sure to follow the best practices when deploying in production In OpenMetadata 1.12.1, a non-admin SSO user can trigger a TEST CONNECTION workflow for a Database Service and receive, in the...

8.3CVSS5.8AI score
Exploits0References3
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.13 views

Astra Linux – Vulnerability in open-vm-tools

VMware Tools 12.0.0, 11.x.y, and 10.x.y contains a local privilege escalation vulnerability. A malicious actor with local non-administrative access to the guest OS can escalate privileges as a root user in the virtual machine...

7.8CVSS7.1AI score0.0054EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/20 5:28 a.m.39 views

CVE-2026-44392

Missing authorization vulnerability exists in Movable Type. Under certain conditions, when a user without administrator privileges signs in to the product, unintended update processing may be executed...

5.3CVSS0.00249EPSS
Exploits0References3
CVE
CVE
added 2026/05/20 5:28 a.m.28 views

CVE-2026-44392

Technical details (affected components, root cause, impacted versions, or exploit information) are not provided in the supplied documents. Please monitor official advisories and CVE records for updates.

5.3CVSS5.8AI score0.00249EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/20 5:28 a.m.10 views

CVE-2026-44392

Missing authorization vulnerability exists in Movable Type. Under certain conditions, when a user without administrator privileges signs in to the product, unintended update processing may be executed...

5.3CVSS5.8AI score0.00249EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/20 5:28 a.m.10 views

EUVD-2026-31066

Missing authorization vulnerability exists in Movable Type. Under certain conditions, when a user without administrator privileges signs in to the product, unintended update processing may be executed...

5.3CVSS5.8AI score0.00249EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/20 5:28 a.m.7 views

CVE-2026-44392

Missing authorization vulnerability exists in Movable Type. Under certain conditions, when a user without administrator privileges signs in to the product, unintended update processing may be executed...

5.3CVSS5.8AI score0.00249EPSS
Exploits0References4Affected Software4
Rows per page
Query Builder