Lucene search
K

4 matches found

NVD
NVD
added 2026/05/11 11:20 p.m.21 views

CVE-2026-43913

Vaultwarden is a Bitwarden-compatible server written in Rust. Prior to 1.35.5, Vaultwarden allows an unconfirmed organization owner to purge the entire organization vault. The organization invite flow uses a two-step process: accepting an invite transitions membership from Invited to Accepted, an...

8.1CVSS0.00267EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/05/11 10:1 p.m.9 views

CVE-2026-43913

Vaultwarden is a Bitwarden-compatible server written in Rust. Prior to 1.35.5, Vaultwarden allows an unconfirmed organization owner to purge the entire organization vault. The organization invite flow uses a two-step process: accepting an invite transitions membership from Invited to Accepted, an...

8.1CVSS5.8AI score0.00267EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2026/05/11 10:1 p.m.3 views

CVE-2026-43913 Vaultwarden: Unconfirmed Owner Can Purge Entire Organization Vault

Vaultwarden is a Bitwarden-compatible server written in Rust. Prior to 1.35.5, Vaultwarden allows an unconfirmed organization owner to purge the entire organization vault. The organization invite flow uses a two-step process: accepting an invite transitions membership from Invited to Accepted, an...

8.1CVSS6AI score0.00267EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.11 views

Vaultwarden 安全漏洞

Vaultwarden is an alternative implementation of the Bitwarden server API, developed by Daniel García. Versions of Vaultwarden prior to 1.35.5 contained security vulnerabilities. These vulnerabilities stemmed from allowing unverified organization owners to delete the entire organization’s vault. T...

8.1CVSS5.8AI score0.00267EPSS
Exploits1References1
Rows per page
Query Builder