CVE-2026-45044 | RustFS up to 1.0.0-beta.1 /profile/cpu dump_cpu_pprof_for missing authentication (GHSA-8784-9m7f-c6p6)

May 28, 2026 Yanac

A vulnerability was found in RustFS up to 1.0.0-beta.1. It has been declared as critical. This impacts the function dump_cpu_pprof_for of the file /profile/cpu. Such manipulation leads to missing authentication.

This vulnerability is listed as CVE-2026-45044. The attack may be performed from remote. There is no available exploit.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More