Nixpkgs security tracker
Untriaged
Permalink
CVE-2026-22768
7.3 HIGH
- CVSS version: 3.1
- Attack vector (AV): LOCAL
- Attack complexity (AC): LOW
- Privileges required (PR): LOW
- User interaction (UI): REQUIRED
- Scope (S): UNCHANGED
- Confidentiality impact (C): HIGH
- Integrity impact (I): HIGH
- Availability impact (A): HIGH
Dell AppSync, version(s) 4.6.0, contain(s) an Incorrect Permission Assignment for …
Dell AppSync, version(s) 4.6.0, contain(s) an Incorrect Permission Assignment for Critical Resource vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges.
References
Affected products
AppSync
- <4.6.1.0 or later
Matching in nixpkgs
pkgs.haskellPackages.amazonka-appsync
Amazon AppSync SDK
-
nixos-unstable 2.0-unstable-2025-04-16
- nixpkgs-unstable 2.0-unstable-2025-04-16
- nixos-unstable-small 2.0-unstable-2025-04-16
-
nixos-25.11 2.0-unstable-2025-04-16
- nixos-25.11-small 2.0-unstable-2025-04-16
- nixpkgs-25.11-darwin 2.0-unstable-2025-04-16
pkgs.python312Packages.mypy-boto3-appsync
Type annotations for boto3 appsync
-
nixos-25.11 boto3-appsync-1.41.0
- nixos-25.11-small boto3-appsync-1.41.0
- nixpkgs-25.11-darwin boto3-appsync-1.41.0
pkgs.python313Packages.mypy-boto3-appsync
Type annotations for boto3 appsync
-
nixos-unstable boto3-appsync-1.42.6
- nixpkgs-unstable boto3-appsync-1.42.6
- nixos-unstable-small boto3-appsync-1.42.6
-
nixos-25.11 boto3-appsync-1.41.0
- nixos-25.11-small boto3-appsync-1.41.0
- nixpkgs-25.11-darwin boto3-appsync-1.41.0
pkgs.python314Packages.mypy-boto3-appsync
Type annotations for boto3 appsync
-
nixos-unstable boto3-appsync-1.42.6
- nixpkgs-unstable boto3-appsync-1.42.6
- nixos-unstable-small boto3-appsync-1.42.6
pkgs.python312Packages.types-aiobotocore-appsync
Type annotations for aiobotocore appsync
Package maintainers
-
@mbalatsko Maksym Balatsko <mbalatsko@gmail.com>
-
@fabaff Fabian Affolter <mail@fabian-affolter.ch>