GO-2025-4090 lakeFS affected by unauthenticated access to API usage metrics in github.com/treeverse/lakefs

lakeFS affected by unauthenticated access to API usage metrics in github.com/treeverse/lakefs...

CVE-2025-64179 lakeFS: Unauthenticated access to API usage metrics

lakeFS is an open-source tool that transforms object storage into a Git-like repositories. In versions 1.69.0 and below, missing authentication in the /api/v1/usage-report/summary endpoint allows anyone to retrieve aggregate API usage counts. While no sensitive data is disclosed, the endpoint may...

EUVD-2025-37514

lakeFS is an open-source tool that transforms object storage into a Git-like repositories. In versions 1.69.0 and below, missing authentication in the /api/v1/usage-report/summary endpoint allows anyone to retrieve aggregate API usage counts. While no sensitive data is disclosed, the endpoint may...

lakeFS affected by unauthenticated access to API usage metrics

Impact Missing authentication in the /api/v1/usage-report/summary endpoint allows anyone to retrieve aggregate API usage counts. While no sensitive data is disclosed, the endpoint may reveal information about service activity or uptime. Patches Upgrade to v1.70.1 Workarounds Any ONE of these is...

Malicious code in usage-metrics (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cebfa7512b7fefffab99cc04eaba7ff09ffc6aa9d19f633010c3314b14c3363e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-6859 Malicious code in usage-metrics (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cebfa7512b7fefffab99cc04eaba7ff09ffc6aa9d19f633010c3314b14c3363e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Update Rollup 6 for System Center 2012 R2 Orchestrator - Service Provider Foundation

Update Rollup 6 for System Center 2012 R2 Orchestrator - Service Provider Foundation Introduction This article describes the issues that are fixed in Update Rollup 6 for Microsoft System Center 2012 R2 Orchestrator - Service Provider Foundation. This article also contains the installation...