NVD Vulnerability Detail
Search Exploit, PoC
CVE-2026-8668
Summary

A static credential embedded in Chef 360 prior to v1.7.0 permitted unauthenticated access to internal message queues.  Queue messages contained tenant-specific identifiers.  The credential has been rotated and replaced with per-tenant access in subsequent versions, eliminating this access method entirely.

Publication Date June 19, 2026, 7:16 a.m.
Registration Date June 27, 2026, 4:04 a.m.
Last Update June 23, 2026, 4:49 a.m.
Related information, measures and tools
Common Vulnerabilities List