CVE-2026-42812 | Apache Polaris up to 1.4.0 access control

May 3, 2026 Yanac

A vulnerability, which was classified as critical, has been found in Apache Polaris up to 1.4.0. This affects an unknown part. Performing a manipulation results in improper access controls.

This vulnerability is cataloged as CVE-2026-42812. It is possible to initiate the attack remotely. There is no exploit available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More

CVE-2026-7705 | JD Cloud JDCOS 4.5.1.r4518 Service Interface /jdcap set_iptv_info vid command injection
CVE-2026-42811 | Apache Polaris up to 1.4.0 improper authentication