Latest critical severity vulnerabilities for "apache polaris"

Where

AND

Sort:

Apache PolarisApache Polaris: No protection on `write.metadata.path`

Risk 87

Severity

9.4

First published (updated )

CVE-2026-42812

Apache PolarisApache Polaris: could broaden vended GCS credentials through unescaped identifier content in access-boundary CEL conditions

Risk 87

Severity

9.4

First published (updated )

CVE-2026-42811

Apache PolarisApache Polaris: could broaden vended S3 credentials through wildcard-bearing namespace or table names

Risk 87

Severity

9.4

First published (updated )

CVE-2026-42810

Apache PolarisApache Polaris: staged table creation could vend storage credentials for unvalidated locations

Risk 87

Severity

9.4

First published (updated )

CVE-2026-42809

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

Trending

Apache PolarisApache Polaris: No protection on `write.metadata.path`

Apache PolarisApache Polaris: could broaden vended GCS credentials through unescaped identifier content in access-boundary CEL conditions

Apache PolarisApache Polaris: could broaden vended S3 credentials through wildcard-bearing namespace or table names

Apache PolarisApache Polaris: staged table creation could vend storage credentials for unvalidated locations

Company

Resources

Contact