CVE-2026-8668

CVE-2026-8668CVE-2026-8668

Description

A static credential embedded in Chef 360 prior to v1.7.0 permitted unauthenticated access to internal message queues.  Queue messages contained tenant-specific identifiers.  The credential has been rotated and replaced with per-tenant access in subsequent versions, eliminating this access method entirely.

Scoring

Last modified2026-06-18
Sourced from NVD. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.