📦 Cloudstack

This critical vulnerability in Apache CloudStack allows unauthenticated attackers to execute arbitrary commands on hypervisors and management servers via the cluster service port (default 9090). It af...

This vulnerability allows attackers to spoof their IP address using the x-forwarded-for HTTP header, potentially bypassing authentication in CloudStack management servers. All CloudStack deployments u...

Apache CloudStack versions 4.5.0 and later contain an XML external entity (XXE) injection vulnerability in the SAML 2.0 authentication plugin. This vulnerability could allow attackers to read arbitrar...

A privilege escalation vulnerability in Apache CloudStack allows malicious Domain Admin users in the ROOT domain to reset passwords of Admin role accounts. This enables attackers to impersonate higher...

This vulnerability in Apache CloudStack allows project members with access to CKS-based Kubernetes clusters to steal the API and secret keys of the cluster creator's 'kubeadmin' account. Attackers can...

This vulnerability in Apache CloudStack allows attackers who can register templates to deploy malicious instances on KVM-based environments, potentially gaining access to host filesystems. This affect...

Apache CloudStack has a Cross-Site Request Forgery (CSRF) vulnerability that allows attackers to trick authenticated users into performing unauthorized actions. This can lead to privilege escalation, ...

Apache CloudStack has a vulnerability where users can upload malicious KVM-compatible templates or volumes that bypass validation checks. This allows attackers to gain access to host filesystems, comp...

A privilege escalation vulnerability in Apache CloudStack allows domain admin accounts to query API and secret keys of all account-users, including root admin. This enables attackers with domain admin...

CVE-2024-41107 is an authentication bypass vulnerability in Apache CloudStack's SAML authentication feature. When SAML authentication is enabled, attackers can spoof SAML responses without valid signa...

Apache CloudStack prior to 4.16.1.0 uses insecure random number generation for project invitation tokens, allowing attackers with knowledge of project IDs to brute-force invitation tokens and potentia...

Apache CloudStack contains a code injection vulnerability in six administrative APIs that allows authenticated administrators to execute arbitrary JavaScript code. This affects CloudStack versions 4.1...

This CVE describes an information disclosure vulnerability in Apache CloudStack where authorized users could occasionally access data beyond their intended permissions through specific APIs. The vulne...

This vulnerability allows malicious Domain Admins or Resource Admins in Apache CloudStack to bypass domain isolation by exploiting flawed access control in listTemplates and listIsos APIs. By specifyi...

Apache CloudStack versions from 4.16.0 have an access validation flaw that allows authenticated users with knowledge of resource UUIDs to read or add comments (annotations) on those resources. This co...

This CVE describes a session expiration vulnerability in Apache CloudStack's web interface where logout doesn't properly invalidate user sessions. An attacker with access to a user's browser can reuse...