CVE-2021-41137 |
AVG-2467 |
High |
Yes |
Access restriction bypass |
All users on MinIO release RELEASE.2021-10-10T16-53-30Z are affected by a vulnerability that involves bypassing policy restrictions on regular users.... |
CVE-2021-21390 |
AVG-1715 |
Medium |
Yes |
Man-in-the-middle |
In MinIO before version RELEASE.2021-03-17T02-33-02Z, there is a vulnerability which enables man-in-the-middle (MITM) modification of request bodies that... |
CVE-2021-21362 |
AVG-1664 |
Medium |
Yes |
Access restriction bypass |
In MinIO before version RELEASE.2021-03-04T00-53-13Z it is possible to bypass a readOnly policy by creating a temporary 'mc share upload' URL. Everyone... |
CVE-2021-21287 |
AVG-1520 |
Medium |
Yes |
Directory traversal |
In MinIO before version RELEASE.2021-01-30T00-20-58Z there is a server-side request forgery vulnerability. The target application may have functionality for... |