Eclipse

Keti

2 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.9

CVE-2021-32835

Exploit
  • EPSS 2.51%
  • Veröffentlicht 09.09.2021 02:15:15
  • Zuletzt bearbeitet 21.11.2024 06:07:50

Eclipse Keti is a service that was designed to protect RESTfuls API using Attribute Based Access Control (ABAC). In Keti a sandbox escape vulnerability may lead to post-authentication Remote Code execution. This vulnerability is known to exist in the...

9.9

CVE-2021-32834

Exploit
  • EPSS 0.33%
  • Veröffentlicht 09.09.2021 02:15:14
  • Zuletzt bearbeitet 21.11.2024 06:07:50

Eclipse Keti is a service that was designed to protect RESTfuls API using Attribute Based Access Control (ABAC). In Keti a user able to create Policy Sets can run arbitrary code by sending malicious Groovy scripts which will escape the configured Gro...