It was discovered that Cyborg did not properly enforce project ownership in the Accelerator Request (ARQ) API. An authenticated user could possibly use this issue to delete ARQs bound to other projects' instances, resulting in a cross-tenant denial of service. (CVE-2026-40214) It was discovered...

#Sicherheitslücke #DDoS

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

USN-8413-1: Cyborg vulnerabilities

VERWANDTEARTIKEL

[Unknown] CVE-2026-8863 – Multiple version of UEFI SHIM bootloaders are vulnerable to SecureBoot bypass t...

[Medium] CVE-2026-40639 – Dell Client Platform BIOS contains a Weak Encoding for Password vulnerability. A...

[Unknown] CVE-2026-36823 – Shenzhen Tenda Technology Co., Ltd Tenda W20E v15.11.0.6 was discovered to conta...

[Unknown] CVE-2026-39169 – SEMCMS 5.0 is vulnerable to unauthorized access in SEMCMS_copy.php.

[Unknown] CVE-2026-39170 – SemCms 5.0 is vulnerable to Cross Site Request Forgery (CSRF) via crafted POST r...

[Unknown] CVE-2026-36817 – Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to cont...