Lucene search
K

4 matches found

NVD
NVD
added 2026/03/24 12:16 a.m.4 views

CVE-2026-33286

Graphiti is a framework that sits on top of models and exposes them via a JSON:API-compliant interface. Versions prior to 1.10.2 have an arbitrary method execution vulnerability that affects Graphiti's JSONAPI write functionality. An attacker can craft a malicious JSONAPI payload with arbitrary...

9.1CVSS0.00632EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/23 11:52 p.m.3 views

CVE-2026-33286 Graphiti Affected by Arbitrary Method Execution via Unvalidated Relationship Names

Graphiti is a framework that sits on top of models and exposes them via a JSON:API-compliant interface. Versions prior to 1.10.2 have an arbitrary method execution vulnerability that affects Graphiti's JSONAPI write functionality. An attacker can craft a malicious JSONAPI payload with arbitrary...

9.1CVSS6.1AI score0.00632EPSS
Exploits0References3
Snyk
Snyk
added 2025/06/11 3:30 p.m.2 views

Incorrect Privilege Assignment

Overview github.com/hashicorp/nomad/command/agent is a package part of hashicorp's nomad. Affected versions of this package are vulnerable to Incorrect Privilege Assignment due to prefix-based ACL policy lookups. An attacker with knowledge of existing job names and permission to create a job can...

8.6CVSS6.8AI score0.00484EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2021/09/07 12:0 a.m.5 views

PT-2021-22260 · Hashicorp +3 · Hashicorp Consul +4

Name of the Vulnerable Software and Affected Versions: HashiCorp Consul and Consul Enterprise version 1.10.1 Description: The Txn.Apply endpoint in HashiCorp Consul and Consul Enterprise allowed services to register proxies for other services, enabling access to service traffic. Recommendations:...

8.8CVSS6AI score0.3479EPSS
Exploits3References44
Rows per page
Query Builder