A vulnerability, which was classified as critical, has been found in NixOS Hydra. Affected by this issue is some unknown functionality of the file /api/push of the component Continuous Integration Service. The manipulation leads to missing authentication.

This vulnerability is handled as CVE-2024-45049. The attack may be launched remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.