Security Advisories for github.com/minio/minio in go
Moderate
about 1 month ago
MinIO vulnerable to Path Traversal via msgpack Body in `ReadMultiple` Storage-REST Endpoint
go
github.com/minio/minio
High
2 months ago
MinIO has an Unauthenticated Object Write via Query-String Credential Signature Bypass in Unsigned-Trailer Uploads
go
github.com/minio/minio
High
2 months ago
MinIO has an Unauthenticated Object Write via Missing Signature Verification in Unsigned-Trailer Uploads
go
github.com/minio/minio
High
2 months ago
MinIO affected a DoS via Unbounded Memory Allocation in S3 Select CSV Parsing
go
github.com/minio/minio
High
3 months ago
MinIO is Vulnerable to SSE Metadata Injection via Replication Headers
go
github.com/minio/minio
Critical
3 months ago
MinIO LDAP login brute-force via user enumeration and missing rate limit
go
github.com/minio/minio
Critical
3 months ago
MinIO has JWT Algorithm Confusion in OIDC Authentication
go
github.com/minio/minio
High
8 months ago
MinIO is Vulnerable to Privilege Escalation via Session Policy Bypass in Service Accounts and STS
go
github.com/minio/minio
High
about 1 year ago
MinIO performs incomplete signature validation for unsigned-trailer uploads
go
github.com/minio/minio
Moderate
over 1 year ago
MinIO allows an SFTP authentication bypass due to improperly trusted SSH key
go
github.com/minio/minio
High
over 1 year ago
MinIO vulnerable to privilege escalation in IAM import API
go
github.com/minio/minio
High
over 2 years ago
Minio unsafe default: Access keys inherit `admin` of root user, allowing privilege escalation
go
github.com/minio/minio
High
almost 3 years ago
Minio vulnerable to Privilege Escalation on Windows via Path separator manipulation
go
github.com/minio/minio