1.46.0
1 years ago
1 days ago
Known vulnerabilities in the lakefs-sdk package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for freeVulnerability | Vulnerable Version |
---|---|
lakefs-sdk is a lakeFS API Affected versions of this package are vulnerable to Improper Preservation of Permissions via the process of re-creating a user with the same username as a previously deleted one. An attacker can gain access to the system using the credentials of the deleted user. How to fix Improper Preservation of Permissions? Upgrade | [,1.33.0) |