2026-03-20 21:58:47
redhat
PUBLISHED
A security issue was discovered in the Feast Feature Servers `/read-document` endpoint that allows an unauthenticated remote attacker to read any file accessible to the server process. By sending a specially crafted HTTP POST request, an attacker can bypass intended access restrictions to potentially retrieve sensitive system files, application configurations, and credentials.