EPSS
Percentile
38.1%
spicedb is vulnerable to improper input validation. The vulnerability exists due to wrongly implemented wildcard which allows an attacker to perform unauthenticated actions with wildcard permissions.
github.com/authzed/spicedb/commit/15bba2e2d2a4bda336a37a7fe8ef8a35028cd970
github.com/authzed/spicedb/issues/358
github.com/authzed/spicedb/releases/tag/v1.4.0
github.com/authzed/spicedb/security/advisories/GHSA-7p8f-8hjm-wm92