CVE-2026-45043 | RustFS up to 1.0.0-beta.1 Endpoint import-iam privileges management
ID: e17da230-d102-5ac4-bf6a-4e06a5cddd45
STIX ID: report--e17da230-d102-5ac4-bf6a-4e06a5cddd45
Feed Name: VulDB Recent Entries
Threat Score
A critical privilege escalation vulnerability (CVE-2026-45043) in RustFS versions up to 1.0.0-beta.1 allows a user with ImportIAMAction to create service accounts under arbitrary parent identities (including root), enabling persistent full administrative access; the issue is fixed in 1.0.0-beta.2 and remediation is to upgrade.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.