← Back

CVE-2026-22043

nvd nist
Published: Jan 8, 2026Modified: Jan 15, 2026

JSON object

Loading...
5.7
Vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Show more
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XShow less
Source: security-advisories@github.com (Secondary)

Description

RustFS is a distributed object storage system built in Rust. In versions 1.0.0-alpha.13 through 1.0.0-alpha.78, a flawed `deny_only` short-circuit in RustFS IAM allows a restricted service account or STS credential to self-issue an unrestricted service account, inheriting the parent’s full privileges. This enables privilege escalation and bypass of session/inline policy restrictions. Version 1.0.0-alpha.79 fixes the issue.

Affected (66)

Products: Rustfs: Rustfs
Rustfs
1 product
Rustfs
Configuration A
66 vulnerable
Vulnerable SoftwareAffected Versions
Rustfs
Rustfs
Version 1.0.0 alpha13
Rustfs
Version 1.0.0 alpha14
Rustfs
Version 1.0.0 alpha15
Rustfs
Version 1.0.0 alpha16
Rustfs
Version 1.0.0 alpha17
Rustfs
Version 1.0.0 alpha18
Rustfs
Version 1.0.0 alpha19
Rustfs
Version 1.0.0 alpha20
Rustfs
Version 1.0.0 alpha21
Rustfs
Version 1.0.0 alpha22
Rustfs
Version 1.0.0 alpha23
Rustfs
Version 1.0.0 alpha24
Rustfs
Version 1.0.0 alpha25
Rustfs
Version 1.0.0 alpha26
Rustfs
Version 1.0.0 alpha27
Rustfs
Version 1.0.0 alpha28
Rustfs
Version 1.0.0 alpha29
Rustfs
Version 1.0.0 alpha30
Rustfs
Version 1.0.0 alpha31
Rustfs
Version 1.0.0 alpha32
Rustfs
Version 1.0.0 alpha33
Rustfs
Version 1.0.0 alpha34
Rustfs
Version 1.0.0 alpha35
Rustfs
Version 1.0.0 alpha36
Rustfs
Version 1.0.0 alpha37
Rustfs
Version 1.0.0 alpha38
Rustfs
Version 1.0.0 alpha39
Rustfs
Version 1.0.0 alpha40
Rustfs
Version 1.0.0 alpha41
Rustfs
Version 1.0.0 alpha42
Rustfs
Version 1.0.0 alpha43
Rustfs
Version 1.0.0 alpha44
Rustfs
Version 1.0.0 alpha45
Rustfs
Version 1.0.0 alpha46
Rustfs
Version 1.0.0 alpha47
Rustfs
Version 1.0.0 alpha48
Rustfs
Version 1.0.0 alpha49
Rustfs
Version 1.0.0 alpha50
Rustfs
Version 1.0.0 alpha51
Rustfs
Version 1.0.0 alpha52
Rustfs
Version 1.0.0 alpha53
Rustfs
Version 1.0.0 alpha54
Rustfs
Version 1.0.0 alpha55
Rustfs
Version 1.0.0 alpha56
Rustfs
Version 1.0.0 alpha57
Rustfs
Version 1.0.0 alpha58
Rustfs
Version 1.0.0 alpha59
Rustfs
Version 1.0.0 alpha60
Rustfs
Version 1.0.0 alpha61
Rustfs
Version 1.0.0 alpha62
Rustfs
Version 1.0.0 alpha63
Rustfs
Version 1.0.0 alpha64
Rustfs
Version 1.0.0 alpha65
Rustfs
Version 1.0.0 alpha66
Rustfs
Version 1.0.0 alpha67
Rustfs
Version 1.0.0 alpha68
Rustfs
Version 1.0.0 alpha69
Rustfs
Version 1.0.0 alpha70
Rustfs
Version 1.0.0 alpha71
Rustfs
Version 1.0.0 alpha72
Rustfs
Version 1.0.0 alpha73
Rustfs
Version 1.0.0 alpha74
Rustfs
Version 1.0.0 alpha75
Rustfs
Version 1.0.0 alpha76
Rustfs
Version 1.0.0 alpha77
Rustfs
Version 1.0.0 alpha78

Related CWEs

CWE-269
Improper Privilege Management
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
CWE-284
Improper Access Control
The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.
CWE-522
Insufficiently Protected Credentials
The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

References (2)

Source: security-advisories@github.com
ExploitVendor Advisory
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0
ExploitVendor Advisory

Timeline

No history available yet.