Lucene search
K

4 matches found

OSV
OSV
added 2026/03/31 6:16 p.m.6 views

DEBIAN-CVE-2026-32725

SciTokens C++ is a minimal library for creating and using SciTokens from C or C++. Prior to version 1.4.1, scitokens-cpp is vulnerable to an authorization bypass when processing path-based scopes in tokens. The library normalizes the scope path from the token before authorization and collapses "....

8.3CVSS5.3AI score0.00834EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2026/03/31 6:16 p.m.3 views

CVE-2026-32726

SciTokens C++ is a minimal library for creating and using SciTokens from C or C++. Prior to version 1.4.1, scitokens-cpp is vulnerable to an authorization bypass in path-based scope validation. The enforcer used a simple string-prefix comparison when checking whether a requested resource path was...

8.1CVSS5.8AI score0.00272EPSS
Exploits1References3
OSV
OSV
added 2026/03/31 5:1 p.m.5 views

CVE-2026-32725 SciTokens C++: Relative Path Traversal Vulnerability

SciTokens C++ is a minimal library for creating and using SciTokens from C or C++. Prior to version 1.4.1, scitokens-cpp is vulnerable to an authorization bypass when processing path-based scopes in tokens. The library normalizes the scope path from the token before authorization and collapses "....

8.3CVSS5.8AI score0.00834EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2026/03/31 5:1 p.m.2 views

CVE-2026-32726

SciTokens C++ is a minimal library for creating and using SciTokens from C or C++. Prior to version 1.4.1, scitokens-cpp is vulnerable to an authorization bypass in path-based scope validation. The enforcer used a simple string-prefix comparison when checking whether a requested resource path was...

8.1CVSS5.3AI score0.00272EPSS
Exploits1
Rows per page
Query Builder