Lucene search
K

1296 matches found

OSV
OSV
added 2026/05/28 6:55 p.m.11 views

GHSA-7J6W-VVW2-5F9C OpenBao's Kerberos Auth Method Accumulates Unaccessible Tokens

Impact In OpenBao's Kerberos auth method on the GET handler, or when an Authorization: Negotiate header is supplied, the response is includes a logical.Auth object in addition to an error message. This results in tokens being created with only the default policy, default TTL, and no entity...

5.3CVSS5.8AI score0.00083EPSS
Exploits0References5
NVD
NVD
added 2026/05/28 5:16 p.m.18 views

CVE-2026-47673

Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.21, the jwt and jwk middlewares do not verify that the Authorization header value uses theBearer scheme. Any two-part header value — regardless of the scheme name in the first position — proceeds t...

6.5CVSS0.00199EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/28 3:29 p.m.11 views

CVE-2026-47673

Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.21, the jwt and jwk middlewares do not verify that the Authorization header value uses theBearer scheme. Any two-part header value — regardless of the scheme name in the first position — proceeds t...

4.8CVSS5.8AI score0.00199EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/05/28 3:29 p.m.34 views

CVE-2026-47673

CVE-2026-47673 concerns the Hono web framework. Before version 4.12.21, the jwt and jwk middlewares did not validate that the Authorization header used the Bearer scheme. Any two-part header value—regardless of the scheme name in the first position—proceeds to JWT verification. As a result, a req...

6.5CVSS5.8AI score0.00199EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/28 3:29 p.m.11 views

CVE-2026-47673 Hono: JWT middleware accepts any Authorization scheme, not only Bearer

Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.21, the jwt and jwk middlewares do not verify that the Authorization header value uses theBearer scheme. Any two-part header value — regardless of the scheme name in the first position — proceeds t...

4.8CVSS5.8AI score0.00199EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/28 3:29 p.m.49 views

CVE-2026-47673 Hono: JWT middleware accepts any Authorization scheme, not only Bearer

Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.21, the jwt and jwk middlewares do not verify that the Authorization header value uses theBearer scheme. Any two-part header value — regardless of the scheme name in the first position — proceeds t...

4.8CVSS0.00199EPSS
Exploits0References1
NVD
NVD
added 2026/05/28 6:16 a.m.17 views

CVE-2026-9803

A flaw was found in Keycloak's ClientRegistrationAuth component. A remote unauthenticated attacker can exploit this vulnerability by sending a specially crafted POST request with a malformed 'Authorization: Bearer' header to any client registration endpoint. This can lead to an...

5.3CVSS0.00417EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/05/28 4:47 a.m.12 views

CVE-2026-9803 Keycloak: keycloak: denial of service via malformed authorization header

A flaw was found in Keycloak's ClientRegistrationAuth component. A remote unauthenticated attacker can exploit this vulnerability by sending a specially crafted POST request with a malformed 'Authorization: Bearer' header to any client registration endpoint. This can lead to an...

5.3CVSS5.8AI score0.00417EPSS
Exploits0References6
CVE
CVE
added 2026/05/28 4:47 a.m.42 views

CVE-2026-9803

CVE-2026-9803 describes a denial-of-service flaw in Keycloak’s ClientRegistrationAuth component. A remote, unauthenticated attacker can trigger an ArrayIndexOutOfBoundsException by sending a specially crafted POST request with a malformed Authorization: Bearer header to any client registration en...

5.3CVSS5.8AI score0.00417EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 2026/05/28 4:47 a.m.14 views

EUVD-2026-32719

A flaw was found in Keycloak's ClientRegistrationAuth component. A remote unauthenticated attacker can exploit this vulnerability by sending a specially crafted POST request with a malformed 'Authorization: Bearer' header to any client registration endpoint. This can lead to an...

5.3CVSS5.8AI score0.00417EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/28 4:47 a.m.40 views

CVE-2026-9803 Keycloak: keycloak: denial of service via malformed authorization header

A flaw was found in Keycloak's ClientRegistrationAuth component. A remote unauthenticated attacker can exploit this vulnerability by sending a specially crafted POST request with a malformed 'Authorization: Bearer' header to any client registration endpoint. This can lead to an...

5.3CVSS0.00417EPSS
Exploits0References6
Snyk
Snyk
added 2026/05/28 4:3 a.m.10 views

Out-of-bounds Read

Overview org.keycloak:keycloak-services is an open source identity and access management solution for modern applications and services. Affected versions of this package are vulnerable to Out-of-bounds Read via the authorization header parsing in the ClientRegistrationAuth component. An attacker...

6.9CVSS5.9AI score0.00417EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/28 12:0 a.m.14 views

PT-2026-44413

Name of the Vulnerable Software and Affected Versions Hono versions prior to 4.12.21 Description The jwt and jwk middlewares fail to verify that the Authorization header value utilizes the Bearer scheme. Consequently, any two-part header value is processed for JWT verification regardless of the...

6.5CVSS5.8AI score0.00199EPSS
Exploits0References7
NVD
NVD
added 2026/05/27 6:16 p.m.17 views

CVE-2026-42553

Cinny is a Matrix client. Prior to 4.10.3, A remote authenticated attacker who shares a room with a victim and has permissions to create room emotes for example in a DM can cause the victim's client to send their Matrix access token to an attacker-controlled server. This occurs when the victim...

7.1CVSS0.00302EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/27 5:27 p.m.10 views

CVE-2026-42553

Cinny is a Matrix client. Prior to 4.10.3, A remote authenticated attacker who shares a room with a victim and has permissions to create room emotes for example in a DM can cause the victim's client to send their Matrix access token to an attacker-controlled server. This occurs when the victim...

7.1CVSS5.9AI score0.00302EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/05/27 5:27 p.m.40 views

CVE-2026-42553

Cinny (Matrix client) before version 4.10.3 is affected by a token-disclosure vulnerability in two parts: (1) EmojiBoard fallback uses an untrusted pack.meta.avatar as a MXC URL, enabling an attacker-controlled HTTP(S) URL in a malicious emote pack; (2) the service worker attaches the user’s Auth...

7.1CVSS5.9AI score0.00302EPSS
Exploits0References2
NVD
NVD
added 2026/05/27 5:16 p.m.45 views

CVE-2026-44316

free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's PCF POST /npcf-smpolicycontrol/v1/sm-policies handler HandleCreateSmPolicyRequest panics with a nil-pointer dereference when a downstream OpenAPI consumer call UDR lookup returns 404 Not Found and the...

7.5CVSS0.00404EPSS
Exploits1References4
EUVD
EUVD
added 2026/05/27 3:36 p.m.12 views

EUVD-2026-32568

free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's NEF mounts the nnef-pfdmanagement route group without inbound OAuth2/bearer-token authorization. A network attacker who can reach NEF on the SBI can use a forged or arbitrary bearer token e.g. Authorization...

10CVSS5.9AI score0.00287EPSS
Exploits1References1
Github Security Blog
Github Security Blog
added 2026/05/27 12:38 a.m.16 views

@hapi/wreck leaks sensitive `Proxy-Authorization` header across cross-hostname redirects

Impact When @hapi/wreck follows a 3xx redirect to a different hostname, only the Authorization and Cookie headers are stripped. The standard credential header Proxy-Authorization is forwarded intact to the redirect target, potentially exposing forward-proxy credentials to a host outside the...

4.3CVSS6.8AI score0.00734EPSS
Exploits0References4Affected Software1
Snyk
Snyk
added 2026/05/27 12:38 a.m.17 views

Insufficiently Protected Credentials

Overview @hapi/wreck is a HTTP Client Utilities library. Affected versions of this package are vulnerable to Insufficiently Protected Credentials due to leaking the sensitive Proxy-Authorization header across cross-hostname redirects. An attacker can obtain sensitive proxy credentials by inducing...

6.3CVSS5.8AI score0.00054EPSS
Exploits0References2
Rows per page
Query Builder