Lucene search
K

5 matches found

Xen Project
Xen Project
added 2026/04/28 12:0 p.m.11 views

oxenstored keeps quota related use counts across domain destruction

ISSUE DESCRIPTION When oxenstored is tearing a domain down, the node data is cleaned up but the usage counts are leaked. When the domain ID is eventually reused, the new domain can create fewer nodes before beeing deemed to be over quota. IMPACT Over an extended period of time, new domains will b...

5.2AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/11/16 10:47 p.m.9 views

CVE-2025-64179

lakeFS is an open-source tool that transforms object storage into a Git-like repositories. In versions 1.69.0 and below, missing authentication in the /api/v1/usage-report/summary endpoint allows anyone to retrieve aggregate API usage counts. While no sensitive data is disclosed, the endpoint may...

5.3CVSS6.7AI score0.00251EPSS
Exploits0References1
OSV
OSV
added 2025/11/06 9:57 p.m.7 views

CVE-2025-64179 lakeFS: Unauthenticated access to API usage metrics

lakeFS is an open-source tool that transforms object storage into a Git-like repositories. In versions 1.69.0 and below, missing authentication in the /api/v1/usage-report/summary endpoint allows anyone to retrieve aggregate API usage counts. While no sensitive data is disclosed, the endpoint may...

5.3CVSS6.7AI score0.00251EPSS
Exploits0References4
CVE
CVE
added 2025/11/06 9:57 p.m.9 views

CVE-2025-64179

lakeFS versions

5.3CVSS6.2AI score0.00251EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/11/06 12:0 a.m.4 views

lakeFS 安全漏洞

lakeFS is an open source tool from Treeverse Open Source that converts your object store into a Git-like repository. A security vulnerability exists in lakeFS 1.69.0 and earlier versions, which stems from a lack of authentication in the /api/v1/usage-report/summary endpoint that could lead to the...

5.3CVSS6.5AI score0.00251EPSS
Exploits0References3
Rows per page
Query Builder