Lucene search
K

19 matches found

Positive Technologies
Positive Technologies
added 2026/07/07 12:0 a.m.8 views

PT-2026-56260

Name of the Vulnerable Software and Affected Versions FastGPT versions prior to 4.15.0 Description An issue exists where the endpoint "/api/core/ai/record/getRecord" authenticates the caller but fails to implement team scoping when loading LLM request and response traces. By providing a known...

7.1CVSS6AI score0.00227EPSS
Exploits0References6
NVD
NVD
added 2026/06/30 3:16 p.m.16 views

CVE-2026-27883

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.464, the GET /api/v1/deployments/uuid endpoint allows any authenticated user to access deployment details belonging to any team, bypassing team-based authorization. The $teamId ...

5CVSS0.00213EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/05/19 9:32 p.m.10 views

Apache Airflow Amazon provider: Prevent unauthorized access to team-scoped secrets in AWS Secrets Manager and SSM Parameter Store backends

In the AWS Secrets Manager and SSM Parameter Store secrets backends of apache-airflow-providers-amazon prior to 9.28.0, the team-scoping logic could resolve a connid containing a / e.g. "myteam/conn" to the same path as another team's team-scoped secret when the caller had no team context. A...

5.3CVSS5.4AI score0.00413EPSS
Exploits0References5Affected Software1
PyPA
PyPA
added 2026/05/19 8:16 p.m.3 views

PYSEC-2026-595

In the AWS Secrets Manager and SSM Parameter Store secrets backends of apache-airflow-providers-amazon prior to 9.28.0, the team-scoping logic could resolve a connid containing a / e.g. "myteam/conn" to the same path as another team's team-scoped secret when the caller had no team context. A...

5.3CVSS5.9AI score0.00413EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2026/05/19 8:16 p.m.4 views

PYSEC-2026-595

In the AWS Secrets Manager and SSM Parameter Store secrets backends of apache-airflow-providers-amazon prior to 9.28.0, the team-scoping logic could resolve a connid containing a / e.g. "myteam/conn" to the same path as another team's team-scoped secret when the caller had no team context. A...

5.3CVSS5.7AI score0.00413EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/05/19 7:17 p.m.45 views

CVE-2026-42526 Apache Airflow Amazon provider: Prevent unauthorized access to team-scoped secrets in AWS Secrets Manager and SSM Parameter Store backends

In the AWS Secrets Manager and SSM Parameter Store secrets backends of apache-airflow-providers-amazon prior to 9.28.0, the team-scoping logic could resolve a connid containing a / e.g. "myteam/conn" to the same path as another team's team-scoped secret when the caller had no team context. A...

0.00413EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/19 7:17 p.m.17 views

CVE-2026-42526 Apache Airflow Amazon provider: Prevent unauthorized access to team-scoped secrets in AWS Secrets Manager and SSM Parameter Store backends

In the AWS Secrets Manager and SSM Parameter Store secrets backends of apache-airflow-providers-amazon prior to 9.28.0, the team-scoping logic could resolve a connid containing a / e.g. "myteam/conn" to the same path as another team's team-scoped secret when the caller had no team context. A...

5.8AI score0.00413EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/30 6:20 p.m.30 views

CVE-2026-40904 Chartbrew: Incorrect Access Control in dataset and dataRequest routes via team-scoped permission checks

Chartbrew is an open-source web application that can connect directly to databases and APIs and use the data to create charts. In version 4.9.0, Chartbrew exposes multiple dataset and dataRequest endpoints that authorize low-privileged project members at the team level instead of binding the...

8.1CVSS0.00235EPSS
Exploits0References2
CVE
CVE
added 2026/04/30 6:20 p.m.19 views

CVE-2026-40904

Chartbrew CVE-2026-40904 affects Chartbrew 4.9.0, where dataset and dataRequest endpoints incorrectly authorize at the team level rather than binding the requested dataset_id, dataRequest_id, and connection_id to the caller’s allowed projects. This enables a user with access to one project inside...

8.1CVSS5.4AI score0.00235EPSS
Exploits0References2
OSV
OSV
added 2026/04/30 6:20 p.m.3 views

CVE-2026-40904 Chartbrew: Incorrect Access Control in dataset and dataRequest routes via team-scoped permission checks

Chartbrew is an open-source web application that can connect directly to databases and APIs and use the data to create charts. In version 4.9.0, Chartbrew exposes multiple dataset and dataRequest endpoints that authorize low-privileged project members at the team level instead of binding the...

8.1CVSS5.9AI score0.00235EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.20 views

EUVD-2022-7028

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.00446EPSS
Exploits1References9
OSV
OSV
added 2024/03/06 10:50 a.m.75 views

BIT-CONCOURSE-2022-31683

Concourse 7.x.y prior to 7.8.3 and 6.x.y prior to 6.7.9 contains an authorization bypass issue. A Concourse user can send a request with body including :teamname=team2 to bypass team scope check to gain access to certain resources belong to any other team...

5.4CVSS5.5AI score0.00446EPSS
Exploits1References2
Veracode
Veracode
added 2022/12/20 6:6 a.m.17 views

Authorization Bypass

github.com/concourse/concourse is vulnerable to authorization bypasses. A malicious user is able to send a request with a body including :teamname=team2 to bypass team scope check and gain access to certain resources belong to any other team...

5.4CVSS5.7AI score0.00446EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2022/12/19 4:15 p.m.42 views

CVE-2022-31683

Concourse 7.x.y prior to 7.8.3 and 6.x.y prior to 6.7.9 contains an authorization bypass issue. A Concourse user can send a request with body including :teamname=team2 to bypass team scope check to gain access to certain resources belong to any other team...

5.4CVSS0.00446EPSS
Exploits1References1
Prion
Prion
added 2022/12/19 4:15 p.m.21 views

Authorization

Concourse 7.x.y prior to 7.8.3 and 6.x.y prior to 6.7.9 contains an authorization bypass issue. A Concourse user can send a request with body including :teamname=team2 to bypass team scope check to gain access to certain resources belong to any other team...

5.5CVSS5.6AI score0.00446EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/12/19 12:0 a.m.49 views

CVE-2022-31683

Concourse 7.x.y prior to 7.8.3 and 6.x.y prior to 6.7.9 contains an authorization bypass issue. A Concourse user can send a request with body including :teamname=team2 to bypass team scope check to gain access to certain resources belong to any other team...

5.9AI score0.00446EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2022/12/19 12:0 a.m.5 views

CVE-2022-31683

Concourse 7.x.y prior to 7.8.3 and 6.x.y prior to 6.7.9 contains an authorization bypass issue. A Concourse user can send a request with body including :teamname=team2 to bypass team scope check to gain access to certain resources belong to any other team...

7.4AI score0.00446EPSS
Exploits1References1
OSV
OSV
added 2022/12/19 12:0 a.m.20 views

CVE-2022-31683

Concourse 7.x.y prior to 7.8.3 and 6.x.y prior to 6.7.9 contains an authorization bypass issue. A Concourse user can send a request with body including :teamname=team2 to bypass team scope check to gain access to certain resources belong to any other team...

5.4CVSS5.6AI score0.00446EPSS
Exploits1References3
OSV
OSV
added 2022/10/19 8:26 p.m.100 views

GHSA-5JP2-VWRJ-99RF Team scope authorization bypass when Post/Put request with :team_name in body, allows HTTP parameter pollution

Impact For some Post/Put Concourse endpoint containing :teamname in the URL, a Concourse user can send a request with body including :teamname=team2 to bypass team scope check to gain access to certain resources belong to any other team. The user only needs a valid user session and belongs to...

5.4CVSS5.7AI score0.00446EPSS
Exploits1References9
Rows per page
Query Builder