Lucene search
K

217 matches found

Github Security Blog
Github Security Blog
added 2026/04/14 11:14 p.m.9 views

Oxia has an OIDC token audience validation bypass via SkipClientIDCheck

Summary The OIDC authentication provider unconditionally sets SkipClientIDCheck: true in the go-oidc verifier configuration, disabling the standard audience aud claim validation at the library level. This allows tokens issued for unrelated services by the same OIDC issuer to be accepted by Oxia...

9.2CVSS5.8AI score0.00255EPSS
Exploits0References3Affected Software1
SUSE CVE
SUSE CVE
added 2026/03/28 12:25 a.m.7 views

SUSE CVE-2026-33215

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. The nats-server provides an MQTT client interface. Prior to versions 2.11.15 and 2.12.5, Sessions and Messages can by hijacked via MQTT Client ID malfeasance. Versions 2.11.15 and 2.12.5 patch the issu...

6.5CVSS5.9AI score0.0024EPSS
Exploits0References3
OSV
OSV
added 2026/03/26 8:33 p.m.4 views

GO-2026-4833 NATS is vulnerable to MQTT hijacking via Client ID in github.com/nats-io/nats-server

NATS is vulnerable to MQTT hijacking via Client ID in github.com/nats-io/nats-server...

6.5CVSS5.9AI score0.0024EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/03/25 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2026-33215

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. The nats- server provides an MQTT client interface. Prior to...

6.5CVSS6.4AI score0.0024EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/24 9:39 p.m.9 views

EUVD-2026-15017

NATS is vulnerable to MQTT hijacking via Client ID...

6.5CVSS5.8AI score0.0024EPSS
Exploits0References3
OSV
OSV
added 2026/03/24 9:39 p.m.5 views

GHSA-FCJP-H8CC-6879 NATS is vulnerable to MQTT hijacking via Client ID

Background NATS.io is a high performance open source pub-sub distributed communication technology, built for the cloud, on-premise, IoT, and edge computing. The nats-server provides an MQTT client interface. Problem Description Sessions and Messages can by hijacked via MQTT Client ID malfeasance...

6.5CVSS5.8AI score0.0024EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2026/03/24 9:39 p.m.7 views

NATS is vulnerable to MQTT hijacking via Client ID

Background NATS.io is a high performance open source pub-sub distributed communication technology, built for the cloud, on-premise, IoT, and edge computing. The nats-server provides an MQTT client interface. Problem Description Sessions and Messages can by hijacked via MQTT Client ID malfeasance...

6.5CVSS5.8AI score0.0024EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2026/03/24 9:16 p.m.5 views

UBUNTU-CVE-2026-33215

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. The nats-server provides an MQTT client interface. Prior to versions 2.11.15 and 2.12.5, Sessions and Messages can by hijacked via MQTT Client ID malfeasance. Versions 2.11.15 and 2.12.5 patch the issu...

6.5CVSS5.8AI score0.0024EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/03/24 8:55 p.m.24 views

CVE-2026-33215 NATS is vulnerable to MQTT hijacking via Client ID

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. The nats-server provides an MQTT client interface. Prior to versions 2.11.15 and 2.12.5, Sessions and Messages can by hijacked via MQTT Client ID malfeasance. Versions 2.11.15 and 2.12.5 patch the issu...

6.5CVSS0.0024EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/03/24 8:55 p.m.5 views

CVE-2026-33215

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. The nats-server provides an MQTT client interface. Prior to versions 2.11.15 and 2.12.5, Sessions and Messages can by hijacked via MQTT Client ID malfeasance. Versions 2.11.15 and 2.12.5 patch the issu...

6.5CVSS6AI score0.0024EPSS
Exploits0
OSV
OSV
added 2026/03/24 8:55 p.m.5 views

CVE-2026-33215 NATS is vulnerable to MQTT hijacking via Client ID

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. The nats-server provides an MQTT client interface. Prior to versions 2.11.15 and 2.12.5, Sessions and Messages can by hijacked via MQTT Client ID malfeasance. Versions 2.11.15 and 2.12.5 patch the issu...

6.5CVSS5.9AI score0.0024EPSS
Exploits0References4
EUVD
EUVD
added 2026/03/21 12:42 a.m.5 views

EUVD-2026-13960

OpenClaw versions prior to 2026.2.25 contain an authentication bypass vulnerability in the trusted-proxy Control UI pairing mechanism that accepts client.id=control-ui without proper device identity verification. An authenticated node role websocket client can exploit this by using the control-ui...

6CVSS5.9AI score0.00335EPSS
Exploits0References3
NVD
NVD
added 2026/03/12 7:16 p.m.7 views

CVE-2026-32236

Backstage is an open framework for building developer portals. Prior to 0.27.1, a Server-Side Request Forgery SSRF vulnerability exists in @backstage/plugin-auth-backend when auth.experimentalClientIdMetadataDocuments.enabled is set to true. The CIMD metadata fetch validates the initial clientid...

7.5CVSS0.00292EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/03/12 2:51 p.m.26 views

@backstage/plugin-auth-backend: SSRF in experimental CIMD metadata fetch

Impact A Server-Side Request Forgery SSRF vulnerability exists in @backstage/plugin-auth-backend when auth.experimentalClientIdMetadataDocuments.enabled is set to true. The CIMD metadata fetch validates the initial clientid hostname against private IP ranges but does not apply the same validation...

7.5CVSS5.8AI score0.00292EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2026/03/12 2:48 p.m.3 views

BIT-PARSE-2026-30949 Parse Server is missing audience validation in Keycloak authentication adapter

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.5.2 and 8.6.18, the Keycloak authentication adapter does not validate the azp authorized party claim of Keycloak access tokens against the configured client-id. A valid access token...

8.8CVSS5.8AI score0.00426EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/12 12:0 a.m.24 views

Backstage 代码问题漏洞

Backstage is an open-source application developed by Backstage. It serves as an open platform for building developer portals. Versions of Backstage prior to 0.27.1 contained code-related vulnerabilities. These vulnerabilities stemmed from server-side request forgeing when the experimental client ...

7.5CVSS5.8AI score0.00292EPSS
Exploits0References3
OSV
OSV
added 2026/03/11 12:17 a.m.3 views

GHSA-48MH-J4P5-7J9V Parse Server missing audience validation in Keycloak authentication adapter

Impact The Keycloak authentication adapter does not validate the azp authorized party claim of Keycloak access tokens against the configured client-id. A valid access token issued by the same Keycloak realm for a different client application can be used to authenticate as any user on the Parse...

7.6CVSS5.8AI score0.00426EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2026/03/11 12:17 a.m.10 views

Parse Server missing audience validation in Keycloak authentication adapter

Impact The Keycloak authentication adapter does not validate the azp authorized party claim of Keycloak access tokens against the configured client-id. A valid access token issued by the same Keycloak realm for a different client application can be used to authenticate as any user on the Parse...

8.8CVSS5.8AI score0.00426EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2026/03/09 5:42 p.m.6 views

GHSA-X6FW-778M-WR9V Parse Server: JWT audience validation bypass in Google, Apple, and Facebook authentication adapters

Impact The Google, Apple, and Facebook authentication adapters use JWT verification to validate identity tokens. When the adapter's audience configuration option is not set clientId for Google/Apple, appIds for Facebook, JWT verification silently skips audience claim validation. This allows an...

9.3CVSS5.8AI score0.00525EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/03/09 5:24 p.m.10 views

Pocket ID: OIDC authorization code validation uses AND instead of OR, allowing cross-client token exchange

Summary The OIDC token endpoint rejects an authorization code only when both the client ID is wrong and the code is expired. This allows cross-client code exchange and expired code reuse. Details backend/internal/service/oidcservice.go:407 go if authorizationCodeMetaData.ClientID != input.ClientI...

8.5CVSS5.8AI score0.00257EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder