Severity: MEDIUM (CVSS 4.3)Affected: yamcs-core < 5.12.7Fixed in: yamcs-core 5.12.7Advisory: GHSA-p2rj-mrmc-9w29 YAMCS has an IAM system with privilege levels. One of them is SystemPrivilege.ControlAccess supposed to gate access to user management endpoints. The IAM API has endpoints for listing users,…
Severity: MEDIUM (CVSS 5.3)Affected: yamcs-core < 5.12.7Fixed in: yamcs-core 5.12.7Advisory: GHSA-w5r6-mcgq-7pq4 YAMCS is an open-source mission control framework used in real space missions ESA’s OPS-SAT, various ground station deployments. If you’ve spent any time in the space software world, you’ve…
First of all, hello — and honestly, what are you doing here? This is The Dumpster. A security research blog that nobody asked for, by Daniel Miranda Barcelona because at some point hacking satellites, pulling RF signals at 2am, and…