CVE-2026-7709

🗓️ 03 May 2026 23:00:16Reported by VulDBType

Calibre-Web up to 0.6.26 has improper authorization via generate_auth_token in kob_auth, enabling remote abuse.

Reporter	Title	Published	Views	Family All 9
ATTACKERKB	CVE-2026-7709	3 May 202623:00	–	attackerkb
Circl	CVE-2026-7709	4 May 202600:53	–	circl
CNNVD	Calibre-Web 安全漏洞	3 May 202600:00	–	cnnvd
Cvelist	CVE-2026-7709 janeczku Calibre-Web Endpoint kobo_auth.py generate_auth_token improper authorization	3 May 202623:00	–	cvelist
EUVD	EUVD-2026-26849	3 May 202623:00	–	euvd
NVD	CVE-2026-7709	3 May 202623:16	–	nvd
Positive Technologies	PT-2026-36726	3 May 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-7709	5 Jun 202619:50	–	redhatcve
Vulnrichment	CVE-2026-7709 janeczku Calibre-Web Endpoint kobo_auth.py generate_auth_token improper authorization	3 May 202623:00	–	vulnrichment

Vulners

Node

janeczku calibre-webMatch0.6.0

janeczku calibre-webMatch0.6.1

janeczku calibre-webMatch0.6.2

janeczku calibre-webMatch0.6.3

janeczku calibre-webMatch0.6.4

janeczku calibre-webMatch0.6.5

janeczku calibre-webMatch0.6.6

janeczku calibre-webMatch0.6.7

janeczku calibre-webMatch0.6.8

janeczku calibre-webMatch0.6.9

janeczku calibre-webMatch0.6.10

janeczku calibre-webMatch0.6.11

janeczku calibre-webMatch0.6.12

janeczku calibre-webMatch0.6.13

janeczku calibre-webMatch0.6.14

janeczku calibre-webMatch0.6.15

janeczku calibre-webMatch0.6.16

janeczku calibre-webMatch0.6.17

janeczku calibre-webMatch0.6.18

janeczku calibre-webMatch0.6.19

janeczku calibre-webMatch0.6.20

janeczku calibre-webMatch0.6.21

janeczku calibre-webMatch0.6.22

janeczku calibre-webMatch0.6.23

janeczku calibre-webMatch0.6.24

janeczku calibre-webMatch0.6.25

janeczku calibre-webMatch0.6.26

[
  {
    "vendor": "janeczku",
    "product": "Calibre-Web",
    "versions": [
      {
        "version": "0.6.0",
        "status": "affected"
      },
      {
        "version": "0.6.1",
        "status": "affected"
      },
      {
        "version": "0.6.2",
        "status": "affected"
      },
      {
        "version": "0.6.3",
        "status": "affected"
      },
      {
        "version": "0.6.4",
        "status": "affected"
      },
      {
        "version": "0.6.5",
        "status": "affected"
      },
      {
        "version": "0.6.6",
        "status": "affected"
      },
      {
        "version": "0.6.7",
        "status": "affected"
      },
      {
        "version": "0.6.8",
        "status": "affected"
      },
      {
        "version": "0.6.9",
        "status": "affected"
      },
      {
        "version": "0.6.10",
        "status": "affected"
      },
      {
        "version": "0.6.11",
        "status": "affected"
      },
      {
        "version": "0.6.12",
        "status": "affected"
      },
      {
        "version": "0.6.13",
        "status": "affected"
      },
      {
        "version": "0.6.14",
        "status": "affected"
      },
      {
        "version": "0.6.15",
        "status": "affected"
      },
      {
        "version": "0.6.16",
        "status": "affected"
      },
      {
        "version": "0.6.17",
        "status": "affected"
      },
      {
        "version": "0.6.18",
        "status": "affected"
      },
      {
        "version": "0.6.19",
        "status": "affected"
      },
      {
        "version": "0.6.20",
        "status": "affected"
      },
      {
        "version": "0.6.21",
        "status": "affected"
      },
      {
        "version": "0.6.22",
        "status": "affected"
      },
      {
        "version": "0.6.23",
        "status": "affected"
      },
      {
        "version": "0.6.24",
        "status": "affected"
      },
      {
        "version": "0.6.25",
        "status": "affected"
      },
      {
        "version": "0.6.26",
        "status": "affected"
      }
    ],
    "cpes": [
      "cpe:2.3:a:janeczku:calibre-web:*:*:*:*:*:*:*:*"
    ],
    "modules": [
      "Endpoint"
    ]
  }
]

Source	Link
drive	www.drive.google.com/drive/folders/1rosrcfxcHrQM7_GOiBwzY_GnCfXoFuVR
vuldb	www.vuldb.com/submit/805823
vuldb	www.vuldb.com/vuln/360885/cti
vuldb	www.vuldb.com/vuln/360885

05 May 2026 19:11Current

6.3Medium risk

Vulners AI Score6.3

CVSS 45.3

CVSS 3.16.3

CVSS 26.5

CVSS 36.3

EPSS0.00043

SSVC