CVE-2026-42812 | Apache Polaris up to 1.4.0 access control

Inserito da Angelo Barbosa | Mag 3, 2026 | CVE

A vulnerability, which was classified as critical, has been found in Apache Polaris up to 1.4.0. This affects an unknown part. Performing a manipulation results in improper access controls.

This vulnerability is cataloged as CVE-2026-42812. It is possible to initiate the attack remotely. There is no exploit available.

It is advisable to upgrade the affected component.

CVE-2026-42812 | Apache Polaris up to 1.4.0 access control

Post correlati

CVE-2025-5736 | TOTOLINK X15 1.0.0-B20230714.1105 HTTP POST Request /boafrm/formNtp submit-url buffer overflow

CVE-2023-4727 | Dogtag CA dogtag-pki/pki-core ldap injection

CVE-2024-8782 | JFinalCMS up to 1.0 /admin/template/edit delete name path traversal (IAOSJG)

CVE-2025-49080 | Absolute Security Secure Access up to 13.53 denial of service