CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

312 matches found

CVE-2026-44428

The MCP Registry provides MCP clients with a list of MCP servers, like an app store for MCP servers. Prior to 1.7.6, the client-side and server-side GitHub OIDC flow is bound only to a global audience string, not to the specific registry instance being targeted. On the client side, the publisher...

4.7CVSS5.5AI score0.00012EPSS

Exploits0References1

RedhatCVE•added 3 days ago•5 views

CVE-2026-41577

authentik is an open-source identity provider. Prior to versions 2025.12.5 and 2026.2.3, the SAML source response processor ResponseProcessor.parse does not validate the Conditions element on assertions. NotBefore, NotOnOrAfter, and AudienceRestriction are all ignored. This allows replay of expir...

7.5CVSS5.4AI score0.00008EPSS

Exploits0References1

RedhatCVE•added 3 days ago•5 views

CVE-2026-40946

Oxia is a metadata store and coordination system. Prior to 0.16.2, the OIDC authentication provider unconditionally sets SkipClientIDCheck: true in the go-oidc verifier configuration, disabling the standard audience aud claim validation at the library level. This allows tokens issued for unrelate...

9.2CVSS5.4AI score0.00068EPSS

Exploits0References1

OSV•added 3 days ago•4 views

BIT-AUTHENTIK-2026-41577 authentik: SAML source does not validate Conditions, timing, or audience on assertions

7.5CVSS5.4AI score0.00008EPSS

Exploits0References2

CVE•added 6 days ago•6 views

CVE-2026-41577

CVE-2026-41577 affects the open‑source identity provider authentik. The SAML source response processor (ResponseProcessor.parse()) does not validate the Conditions element on assertions prior to versions 2025.12.5 and 2026.2.3. Specifically, NotBefore, NotOnOrAfter, and AudienceRestriction are ig...

7.5CVSS5.7AI score0.00008EPSS

Exploits0References1Affected Software1

Cvelist•added 6 days ago•26 views

CVE-2026-41577 authentik: SAML source does not validate Conditions, timing, or audience on assertions

6.9CVSS0.00008EPSS

Exploits0References1

ATTACKERKB•added 2026/05/28 4:21 p.m.•7 views

CVE-2026-9093

In Casdoor versions 2.362.0 and earlier, the SAML service provider implementation does not validate the AudienceRestriction element in SAML assertions. The buildSp function in object/samlsp.go never sets AudienceURI on the gosaml2 SAMLServiceProvider struct and never inspects...

5.8AI score0.00054EPSS

Exploits0References2

EUVD•added 2026/05/28 4:21 p.m.•6 views

EUVD-2026-32945

5.8AI score0.00054EPSS

Exploits0References1

CNNVD•added 2026/05/28 12:0 a.m.•4 views

Casdoor 安全漏洞

Casdoor is an open-source platform developed by Casdoor that supports various authentication and authorization protocols. Versions of Casdoor 2.362.0 and earlier contained security vulnerabilities. These vulnerabilities stemmed from the SAML service provider’s failure to validate the...

5.8AI score0.00054EPSS

Exploits0References1

Positive Technologies•added 2026/05/27 12:0 a.m.•7 views

PT-2026-44138

Description OidcTokenHandler is Symfony's built-in access-token handler for OpenID Connect: it validates a bearer JWT and returns the authenticated user identity. It delegates claim validation to the web-token/jwt-checker library's ClaimCheckerManager. OidcTokenHandler::verifyClaims registers...

7.1CVSS5.8AI score

Exploits0References7

OSSF Malicious Packages•added 2026/05/23 6:16 p.m.•8 views

Malicious code in @audience-common-ui/components (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e26e359a883cc73de6df21c10ea5bc94596f94ac4c38a3c703f44c91f3a8f1e Package @audience-common-ui/[email protected] is a dependency-confusion probe targeting an internal scope. Both preinstall and postinstall lifecycle...

5.9AI score

Exploits0References1

OSV•added 2026/05/23 6:16 p.m.•3 views

MAL-2026-4287 Malicious code in @audience-common-ui/components (npm)

5.9AI score

Exploits0References1

Snyk•added 2026/05/20 3:35 p.m.•4 views

Improper Verification of Cryptographic Signature

Overview symfony/security-http is a provides an infrastructure for sophisticated authorization systems, which makes it possible to easily separate the actual authorization logic from so called user providers that hold the users credentials. Affected versions of this package are vulnerable to...

9.3CVSS5.8AI score

Exploits0References2

RedHat Linux•added 2026/05/20 11:23 a.m.•8 views

Important: Red Hat Security Advisory: Red Hat build of Keycloak 26.4.12 Security Update

New Red Hat build of Keycloak 26.4.12 packages are available from the Customer Portal Red Hat build of Keycloak 26.4.12 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. Security...

8.1CVSS5.8AI score0.00059EPSS

Exploits0References1

RedHat Linux•added 2026/05/20 11:23 a.m.•6 views

keycloak: Keycloak: Information disclosure via OIDC token introspection endpoint audience bypass

A flaw was found in Keycloak. This access control vulnerability in Keycloak's OpenID Connect OIDC token introspection endpoint allows a confidential client to bypass audience restrictions. An attacker-controlled client with valid credentials can retrieve sensitive token claims intended for other...

6.5CVSS5.7AI score0.00012EPSS

Exploits0References4

OSV•added 2026/05/19 12:31 p.m.•4 views

GHSA-4X37-HW65-52W8 Keycloak: Information disclosure via OIDC token introspection endpoint audience bypass

6.5CVSS5.7AI score0.00012EPSS

Exploits0References8