11 matches found
CVE-2026-3432
On SimStudio version below to 0.5.74, the /api/auth/oauth/token endpoint contains a code path that bypasses all authorization checks when provided with credentialAccountUserId and providerId parameters. An unauthenticated attacker can retrieve OAuth access tokens for any user by supplying their...
CVE-2026-3431
On SimStudio version below to 0.5.74, the MongoDB tool endpoints accept arbitrary connection parameters from the caller without authentication or host restrictions. An attacker can leverage these endpoints to connect to any reachable MongoDB instance and perform unauthorized operations including...
CVE-2026-3432
On SimStudio version below to 0.5.74, the /api/auth/oauth/token endpoint contains a code path that bypasses all authorization checks when provided with credentialAccountUserId and providerId parameters. An unauthenticated attacker can retrieve OAuth access tokens for any user by supplying their...
CVE-2026-3431
On SimStudio version below to 0.5.74, the MongoDB tool endpoints accept arbitrary connection parameters from the caller without authentication or host restrictions. An attacker can leverage these endpoints to connect to any reachable MongoDB instance and perform unauthorized operations including...
CVE-2026-3431
On SimStudio version below to 0.5.74, the MongoDB tool endpoints accept arbitrary connection parameters from the caller without authentication or host restrictions. An attacker can leverage these endpoints to connect to any reachable MongoDB instance and perform unauthorized operations including...
CVE-2026-3432
CVE-2026-3432 affects SimStudio
EUVD-2026-9173
On SimStudio version below to 0.5.74, the /api/auth/oauth/token endpoint contains a code path that bypasses all authorization checks when provided with credentialAccountUserId and providerId parameters. An unauthenticated attacker can retrieve OAuth access tokens for any user by supplying their...
EUVD-2026-9172
On SimStudio version below to 0.5.74, the MongoDB tool endpoints accept arbitrary connection parameters from the caller without authentication or host restrictions. An attacker can leverage these endpoints to connect to any reachable MongoDB instance and perform unauthorized operations including...
CVE-2026-3431
Summary (CVE-2026-3431) : In SimStudio, versions below 0.5.74 have MongoDB tool endpoints that accept arbitrary connection parameters from unauthenticated callers with no host restrictions. An attacker could connect to any reachable MongoDB instance and perform unauthorized read, modification, or...
PT-2026-22583
Name of the Vulnerable Software and Affected Versions SimStudio versions prior to 0.5.74 Description The /api/auth/oauth/token endpoint in SimStudio has a code path that circumvents authorization checks when provided with the credentialAccountUserId and providerId parameters. An unauthenticated...
PT-2026-22582
Name of the Vulnerable Software and Affected Versions SimStudio versions prior to 0.5.74 Description SimStudio’s MongoDB tool endpoints accept arbitrary connection parameters from callers without authentication or host restrictions. This allows an attacker to connect to any reachable MongoDB...