Lemur: ACME SSRF + creator-equality IDOR lead to AWS IAM/PKI compromise
Lemur: JWT verifier honors attacker-supplied alg, enabling ATO
Lemur user-update path stores plaintext passwords
Lemur Privilege Escalation: Non-admin role members can rewrite role membership via PUT /api/1/roles/<id>
Lemur: Crafted CRL/OCSP URLs in uploaded certificates lead to post-authentication SSRF
nextflow auth login command has incorrect default permissions
Rekor has an OOM Condition due to Unbounded gzip Decompression in Alpine APK Parsing Logic
GitHub MCP Server: Lockdown mode singleton in HTTP server causes cross-user GraphQL client confusion
Lemur has an authorization bypass in StrictRolePermission / AuthorityCreatorPermission
opentelemetry_sdk has unbounded memory allocation in W3C Baggage propagation
OpenAM: Unauthenticated Authentication Bypass via RADIUS Spoofing
OpenAM Arbitrary OAuth Token Minting via Push Registration
@anthropic-ai/claude-code has an Insecure Temporary File in /copy Command that Enables Response Disclosure and Symlink-Based File Write
OpenAM has Unsafe Java Deserialization via SNS
OS Command Injection vulnerability in the traceroute action of Rapid7 InsightConnect Traceroute Plugin on Linux allows remote attackers to execute arbitrary OS commands via the host, port, max_ttl, count, or time_out request parameters due to insufficient input validation when constructing shell com...
OS Command Injection vulnerability in the TR action of Rapid7 InsightConnect Translate Plugin on Linux allows remote attackers to execute arbitrary OS commands via the text or expression parameters due to insufficient input sanitization in shell command construction.
OS Command Injection vulnerability in Rapid7 InsightConnect Finger Plugin on Linux allows authenticated attackers to execute arbitrary OS commands via the user or host parameters due to insufficient input validation in shell command construction.
OS Command Injection vulnerability in the ping action of Rapid7 InsightConnect Ping Plugin on Linux allows remote attackers to execute arbitrary OS commands via the host parameter due to insufficient input validation when constructing shell commands.
OS Command Injection vulnerability in the process_string action of Rapid7 InsightConnect AWK Plugin on Linux allows remote attackers to execute arbitrary OS commands via the text or expression parameters due to unsafe shell command construction in the processing pipeline.
OS Command Injection vulnerability in Rapid7 InsightConnect Sed Plugin on Linux allows authenticated attackers to execute arbitrary OS commands via the expression parameter due to insufficient input validation.