Vulnerability in Progress Chef Chef360
CVE-2026-8668
A static credential embedded in Chef 360 prior to v1.7.0 permitted unauthenticated access to internal message queues. Queue messages contained tenant-specific identifiers. The credential has been rotated and replaced with per-tenant acce…
Affected products
- Progress Chef Chef360 — versions 0
Weakness classification (CWE)
References
- security@progress.com (release-notes)