CVE-2024-27916 | stacklok minder improper authentication

Inserito da Angelo Barbosa | Mar 5, 2024 | CVE

A vulnerability was found in stacklok minder. It has been rated as critical. This issue affects the function GetRepositoryByName/DeleteRepositoryByName/GetArtifactByName. The manipulation leads to improper authentication.

The identification of this vulnerability is CVE-2024-27916. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-27916 | stacklok minder improper authentication

Post correlati

CVE-2023-48654 | One Identity Password Manager Secure Password Extension up to 5.13.0 Kiosk Mode access control

CVE-2024-1225 | QiboSoft QiboCMS X1 up to 1.0.6 Pay.php rmb_pay callback_class deserialization

CVE-2024-6504 | Rapid7 InsightVM 6.6.178/6.6.179/6.6.244 REST Request resource consumption

CVE-2023-35136 | Zyxel ATP/USG FLEX/USG FLEX 50/USG20-VPN/VPN Configuration File information disclosure