GITHUBEXPLOIT

Exploit for CVE-2026-44595_1296FEF5-CF82-534F-9672-F87D07FC7346

May 29, 2026 invoker category_exploit

Description

CVE-2026-44595 — YAMCS Unauthorized User Enumeration via IAM API Summary The IAM API endpoints listUsers, getUser, listGroups, getGroup in yamcs-core do not enforce the required SystemPrivilege.ControlAccess check. Any authenticated user — even one...
Visit Original Source

Basic Information

ID 1296FEF5-CF82-534F-9672-F87D07FC7346
Published May 29, 2026 at 14:31
Modified May 29, 2026 at 14:34

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.