Lucene search
K

380 matches found

Positive Technologies
Positive Technologies
added 2026/06/02 12:0 a.m.15 views

PT-2026-45858

Name of the Vulnerable Software and Affected Versions authentik versions prior to 2025.12.6 authentik versions prior to 2026.2.4 authentik versions prior to 2026.5.1 Description An attacker who has the ability to modify a source connection and possesses an account in one of the configured sources...

8.8CVSS5.8AI score0.00298EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2026/06/02 12:0 a.m.12 views

PT-2026-45859

Name of the Vulnerable Software and Affected Versions authentik versions prior to 2025.12.6 authentik versions prior to 2026.2.4 authentik versions prior to 2026.5.1 Description authentik is an open-source identity provider. The Source stage can be bypassed by sending an empty POST request...

9.8CVSS5.8AI score0.0036EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2026/06/02 12:0 a.m.20 views

PT-2026-45854

Name of the Vulnerable Software and Affected Versions authentik versions prior to 2026.2.3 Description The WS-Federation provider in this open-source identity provider validates the user-supplied wreply parameter using a raw string prefix check instead of proper URL parsing. An attacker can craft...

6.9CVSS5.8AI score0.00182EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.4 views

authentik 授权问题漏洞

Authentik is an open-source identity provisioning application. Versions of Authentik before 2025.12.6, 2026.2.4, and 2026.5.1 have vulnerabilities related to authorization. These vulnerabilities stem from the possibility of sending empty POST requests, which may bypass the authentication phase...

9.8CVSS5.5AI score0.0036EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.7 views

authentik 授权问题漏洞

Authentik is an open-source identity provisioning application. Versions of Authentik prior to 2025.12.6, 2026.2.4, and 2026.5.1 contained vulnerabilities related to authorization. These vulnerabilities stemmed from the possibility for attackers who could modify source connections to exploit...

8.8CVSS5.3AI score0.00298EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.6 views

authentik 输入验证错误漏洞

Authentik is an open-source identity provisioning application developed by Authentik. Versions prior to 2025.12.5, 2026.2.3, and 2026.5.1 contained a vulnerability related to input validation errors. This vulnerability stemmed from an XML signature packaging flaw in the SAML Source ACS endpoint’s...

8.5CVSS5.3AI score0.00162EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.5 views

authentik 跨站脚本漏洞

Authentik is an open-source identity provisioning application. Versions of Authentik before 2025.12.5 and 2026.2.3 had a cross-site scripting vulnerability. This vulnerability stemmed from issues in the SFE implementation phase, which could lead to the exploitation of XSS vulnerabilities during t...

9.3CVSS5AI score0.00318EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.5 views

authentik 输入验证错误漏洞

Authentik is an open-source identity provisioning application. Versions of Authentik prior to 2026.2.3 had a vulnerability related to input validation errors. This vulnerability stemmed from the WS-Federation provider’s use of raw string prefixes for validation instead of proper URL parsing, whic...

6.9CVSS5.3AI score0.00182EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.8 views

authentik 数据伪造问题漏洞

Authentik is an open-source identity provisioning application developed by Authentik. Versions of Authentik before 2025.12.5 and 2026.2.3 had a data manipulation vulnerability. This vulnerability stemmed from the SAML response processor not verifying the Conditions element in assertions, which...

7.5CVSS5.3AI score0.00169EPSS
Exploits0References1
OSV
OSV
added 2026/06/01 11:37 a.m.8 views

BIT-AUTHENTIK-2026-40172 authentik: Privilege Escalation via User PATCH: Superuser Group Assignment Bypasses enable_group_superuser

authentik is an open-source identity provider. In versions prior to 2025.12.5 and 2026.2.0 through 2026.2.2, the PATCH /api/v3/core/users/pk/ API allows a caller with changeuser on a target user to assign arbitrary groups through UserSerializer, including groups with issuperuser=True, without...

8.1CVSS5.9AI score0.00392EPSS
Exploits0References4
OSV
OSV
added 2026/06/01 11:37 a.m.9 views

BIT-AUTHENTIK-2026-40166 authentik: Non-admin user can retrieve confidential OAuth client_secret via /api/v3/oauth2/access_tokens/

authentik is an open-source identity provider. In versions prior to 2025.12.5 and 2026.2.0 through 2026.2.2, authenticated non-admin users with at least one OAuth2 access token can retrieve the clientsecret of confidential OAuth2 providers they have previously authenticated against, exposing...

7.1CVSS5.7AI score0.00337EPSS
Exploits0References4
OSV
OSV
added 2026/05/29 8:25 p.m.10 views

GHSA-C3M2-JQMQ-PVP3 authentik's XML Signature Wrapping in SAML Source ACS allows authentication as arbitrary federated user

Summary authentik's SAML Source ACS endpoint is vulnerable to XML Signature Wrapping when validating upstream SAML responses. An attacker with any account at the upstream IdP can reuse a valid signed assertion to authenticate as another federated user. Patches authentik 2026.5.1, 2026.2.4 and...

8.5CVSS5.8AI score0.00162EPSS
Exploits0References4
NVD
NVD
added 2026/05/29 7:16 p.m.13 views

CVE-2026-44649

SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image generation engines, and text-to-speech voice models. Prior to 1.18.0, SillyTavern accepts Remote-User Authelia and X-Authentik-Username Authentik HTTP headers to...

9.8CVSS0.00218EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/29 5:45 p.m.12 views

CVE-2026-44649 SillyTavern: Authentication Bypass via SSO Header Injection

SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image generation engines, and text-to-speech voice models. Prior to 1.18.0, SillyTavern accepts Remote-User Authelia and X-Authentik-Username Authentik HTTP headers to...

9.8CVSS5.8AI score0.00218EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/29 5:45 p.m.10 views

EUVD-2026-33401

SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image generation engines, and text-to-speech voice models. Prior to 1.18.0, SillyTavern accepts Remote-User Authelia and X-Authentik-Username Authentik HTTP headers to...

9.8CVSS5.8AI score0.00218EPSS
Exploits0References1
CVE
CVE
added 2026/05/29 5:45 p.m.21 views

CVE-2026-44649

SillyTavern) vulnerability (CVE-2026-44649) affects SillyTavern before version 1.18.0 where header-based SSO authentication can be bypassed. The root cause is lack of validation that Remote-User (Authelia) and X-Authentik-Username (Authentik) headers originate from a trusted reverse proxy. The lo...

9.8CVSS5.8AI score0.00218EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/29 5:45 p.m.10 views

CVE-2026-44649

SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image generation engines, and text-to-speech voice models. Prior to 1.18.0, SillyTavern accepts Remote-User Authelia and X-Authentik-Username Authentik HTTP headers to...

9.8CVSS5.8AI score0.00218EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/29 12:0 a.m.13 views

PT-2026-45029

Name of the Vulnerable Software and Affected Versions authentik versions prior to 2025.12.5 authentik versions prior to 2026.2.3 authentik versions prior to 2026.5.1 Description The SAML Source ACS endpoint is susceptible to XML Signature Wrapping, a technique where a valid signature is used to...

8.5CVSS5.8AI score0.00162EPSS
Exploits0References10
CNNVD
CNNVD
added 2026/05/29 12:0 a.m.12 views

SillyTavern 安全漏洞

SillyTavern is a frontend interface for the SillyTavern open-source language model. Versions of SillyTavern prior to 1.18.0 contained security vulnerabilities. These vulnerabilities stemmed from automatic login using the Remote-User and X-Authentik-Username HTTP headers, without verifying whether...

9.8CVSS5.8AI score0.00218EPSS
Exploits0References1
OSV
OSV
added 2026/05/25 2:36 p.m.9 views

BIT-AUTHENTIK-2026-40165 authentik: SAML NameID XML Comment Injection Enables Authentication Bypass via Identifier Truncation

authentik is an open-source identity provider. Versions 2025.12.4 and prior, and versions 2026.2.0 through 2026.2.2 were vulnerable to Authentication Bypass through SAML NameID XML Comment Injection. Due to how authentik extracted the NameID value from a SAML assertion, it was possible for an...

8.7CVSS5.7AI score0.00393EPSS
Exploits0References4
Rows per page
Query Builder