Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/01/02 5:31 p.m.5 views

CVE-2025-47411

A user with a legitimate non-administrator account can exploit a vulnerability in the user ID creation mechanism in Apache StreamPipes that allows them to swap the username of an existing user with that of an administrator. This vulnerability allows an attacker to gain administrative control over...

8.1CVSS6.9AI score0.14786EPSS
Exploits0References1
Snyk
Snyk
added 2026/01/01 6:30 p.m.6 views

Incorrect Authorization

Overview streampipes is a Python library for Apache StreamPipes Affected versions of this package are vulnerable to Incorrect Authorization via the user ID creation mechanism. A user can gain administrative privileges by manipulating JWT tokens and swapping the username of an existing user with a...

8.8CVSS7AI score0.14786EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/01/01 4:41 p.m.52 views

CVE-2025-47411 Apache StreamPipes: Leverage of User ID for Privilege Escalation

A user with a legitimate non-administrator account can exploit a vulnerability in the user ID creation mechanism in Apache StreamPipes that allows them to swap the username of an existing user with that of an administrator. This vulnerability allows an attacker to gain administrative control over...

0.14786EPSS
Exploits0References1
EUVD
EUVD
added 2026/01/01 4:41 p.m.6 views

EUVD-2026-0016

A user with a legitimate non-administrator account can exploit a vulnerability in the user ID creation mechanism in Apache StreamPipes that allows them to swap the username of an existing user with that of an administrator. This vulnerability allows an attacker to gain administrative control over...

6.4AI score0.14786EPSS
Exploits0References3
Rows per page
Query Builder