High severity8.8NVD Advisory· Published Nov 30, 2023· Updated Jun 17, 2026
CVE-2023-46326
CVE-2023-46326
Description
ZStack Cloud version 3.10.38 and before allows unauthenticated API access to the list of active job UUIDs and the session ID for each of these. This leads to privilege escalation.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- ZStack Cloud/ZStack Clouddescription
Patches
Vulnerability mechanics
References
1- github.com/zstackio/zstack/security/advisories/GHSA-w2rv-x3pp-h67qnvdExploitVendor Advisory
News mentions
0No linked articles in our index yet.