4 matches found
Exploit for Improper Authentication in Adguard Adguardhome
CVE-2026-32136exploit - AdGuard Home h2c Upgrade Auth Bypass...
Improper Authentication
Overview Affected versions of this package are vulnerable to Improper Authentication via the h2c upgrade process. An attacker can gain unauthorized access by exploiting improper authentication handling during the HTTP/2 Cleartext upgrade. Remediation Upgrade...
CVE-2026-32136
AdGuard Home (network-wide ad/blocking software) contains a authentication bypass vulnerability CVE-2026-32136. Before 0.107.73, an unauthenticated remote attacker can trigger an HTTP/1.1 upgrade to h2c; after the upgrade is accepted, the inner mux handles subsequent HTTP/2 requests without authe...
CVE-2026-32136 AdGuard Home: HTTP/2 Cleartext (h2c) Upgrade Authentication Bypass
AdGuard Home is a network-wide software for blocking ads and tracking. Prior to 0.107.73, an unauthenticated remote attacker can bypass all authentication in AdGuardHome by sending an HTTP/1.1 request that requests an upgrade to HTTP/2 cleartext h2c. Once the upgrade is accepted, the resulting...