CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

452 matches found

GHSA-HCXC-WF8J-23HV OpenFGA: OIDC audience validation skipped when --authn-oidc-audience is unset

Description OpenFGA's OIDC authenticator skipped JWT audience aud validation when no audience was configured. In deployments where one identity provider issues tokens for multiple services, a token minted for an unrelated service could authenticate to OpenFGA. Preconditions This applies if the...

6.8CVSS5.8AI score

Exploits0References2

AstraLinux•added 4 days ago•2 views

Astra Linux – Vulnerability in OpenLDAP

In OpenLDAP versions 2.4.57 and 2.5.x through 2.5.1alpha, an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function due to a malicious packet. This leads to a denial of service daemon exits caused by a short timestamp. This issue is related to the schemainit.c file and the...

7.5CVSS7.1AI score0.64147EPSS

Exploits1References1

NVD•added 5 days ago•10 views

CVE-2026-11718

An authentication bypass vulnerability exists in the generic opaque token validation path validateOpaqueToken of googleapis/mcp-toolbox. When the toolbox validates an opaque token via an OAuth 2.0 introspection endpoint RFC 7662, it decodes the response into an introspectResp struct. However, the...

9.3CVSS0.00204EPSS

Exploits0References1

EUVD•added 5 days ago•10 views

EUVD-2026-37880

9.3CVSS5.4AI score0.00204EPSS

Exploits0References1

Cvelist•added 5 days ago•16 views

CVE-2026-11718

9.3CVSS0.00204EPSS

Exploits0References1

ATTACKERKB•added 5 days ago•8 views

CVE-2026-11718

9.3CVSS5.3AI score0.00204EPSS

Exploits0References2Affected Software1

CVE•added 5 days ago•22 views

CVE-2026-11718

The CVE-2026-11718 entry concerns an authentication bypass in googleapis/mcp-toolbox: during opaque-token validation via an OAuth 2.0 introspection endpoint, the code decodes the response and checks issuer with the condition a.issuer != "" && iss != "". If the introspection response omits iss, is...

9.3CVSS5.4AI score0.00204EPSS

Exploits0References1

RedHat Linux•added 2026/06/16 12:16 p.m.•5 views

python-pyjwt: PyJWT: Authentication bypass due to forged JSON Web Tokens

A flaw was found in PyJWT, a Python library for JSON Web Token JWT implementation. When decoding JWTs, the library fails to validate the use of JSON Web Keys JWK in the HMAC algorithm while also supporting asymmetric algorithms. This allows a remote attacker to use the issuer's public key as the...

7.4CVSS5.5AI score0.00148EPSS

Exploits1References5

EUVD•added 2026/06/15 7:28 p.m.•9 views

EUVD-2026-32917

PyJWT: Public-key JWK accepted as HMAC secret enables forged HS256 tokens when mixed families are allowed...

7.4CVSS5.1AI score0.00148EPSS

Exploits1References3

Cvelist•added 2026/06/12 8:55 a.m.•29 views

CVE-2026-50627 Apache CXF: OAuth2: Missing JWT Audience and Issuer Validation in Access Token Validator

The JwtAccessTokenValidator class in Apache CXF fails to validate the 'aud' Audience claims of incoming JWT access tokens. This allows a JWT issued for one Resource Server to be successfully replayed against a completely different Resource Server, leading to Token Confusion/Routing attacks. Users...

0.00508EPSS

Exploits0References1

CVE•added 2026/06/12 8:55 a.m.•16 views

CVE-2026-50627

The CVE-2026-50627 issue affects Apache CXF’s JwtAccessTokenValidator, which fails to validate the aud (Audience) claim in incoming JWT access tokens. As described in multiple sources (NVD/Red Hat/CVE List/etc.), a token issued for one Resource Server could be replayed against a different Resourc...

9.1CVSS5.2AI score0.00508EPSS

Exploits0References2Affected Software1

Tenable Nessus•added 2026/06/12 12:0 a.m.•10 views

RockyLinux 9 : openssl (RLSA-2026:25239)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:25239 advisory. openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing CVE-2026-7383 openssl: OpenSSL: Denial of Service due to...

9.1CVSS6.2AI score0.01409EPSS

Exploits0References31

AlmaLinux•added 2026/06/11 12:0 a.m.•6 views

Important: openssl security update

OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and Transport Layer Security TLS protocols, as well as a full-strength general-purpose cryptography library. Security Fixes: openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing CVE-2026-73...

9.1CVSS5.8AI score0.01409EPSS

Exploits0References32

OSV•added 2026/06/09 12:0 a.m.•4 views

UBUNTU-CVE-2026-42769

Issue Summary: An error in the callback used to verify the certificate provided in a Root CA key update Certificate Management Protocol CMP message response rendered the certificate validation ineffectual, which could lead to escalation of credentials from the Registration Authority RA level to t...

5.3CVSS5.6AI score0.00255EPSS

Exploits0References4

NVD•added 2026/06/08 1:16 p.m.•8 views

CVE-2026-7765

Incorrect authorization in the User Messages dashboard widget in Checkmk 2.5.0p5 causes the message-fetching endpoints to return the dashboard creator's messages rather than the viewer's, allowing an attacker who knows a valid public dashboard share token to read the issuer's personal messages by...

6.3CVSS0.00187EPSS

Exploits0References1

OSV•added 2026/06/08 1:16 p.m.•3 views

UBUNTU-CVE-2026-7765

6.3CVSS5.4AI score0.00187EPSS

Exploits0References3

EUVD•added 2026/06/08 12:6 p.m.•8 views

EUVD-2026-35051

6.3CVSS5.4AI score0.00187EPSS

Exploits0References1