Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/03 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2026-32726

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SciTokens C++ is a minimal library for creating and using SciTokens from C or C++. Prior to version 1.4.1, scitokens-cpp is vulnerable to an authorization bypas...

8.1CVSS5.8AI score0.00272EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2026/04/02 8:37 a.m.4 views

SUSE CVE-2026-32726

SciTokens C++ is a minimal library for creating and using SciTokens from C or C++. Prior to version 1.4.1, scitokens-cpp is vulnerable to an authorization bypass in path-based scope validation. The enforcer used a simple string-prefix comparison when checking whether a requested resource path was...

8.1CVSS5.8AI score0.00272EPSS
Exploits1References3
OSV
OSV
added 2026/03/31 6:16 p.m.5 views

DEBIAN-CVE-2026-32726

SciTokens C++ is a minimal library for creating and using SciTokens from C or C++. Prior to version 1.4.1, scitokens-cpp is vulnerable to an authorization bypass in path-based scope validation. The enforcer used a simple string-prefix comparison when checking whether a requested resource path was...

8.1CVSS5.3AI score0.00272EPSS
Exploits1References1
OSV
OSV
added 2026/03/31 6:16 p.m.3 views

UBUNTU-CVE-2026-32726

SciTokens C++ is a minimal library for creating and using SciTokens from C or C++. Prior to version 1.4.1, scitokens-cpp is vulnerable to an authorization bypass in path-based scope validation. The enforcer used a simple string-prefix comparison when checking whether a requested resource path was...

8.1CVSS5.7AI score0.00272EPSS
Exploits1References4
EUVD
EUVD
added 2026/03/31 5:1 p.m.3 views

EUVD-2026-17563

SciTokens C++ is a minimal library for creating and using SciTokens from C or C++. Prior to version 1.4.1, scitokens-cpp is vulnerable to an authorization bypass in path-based scope validation. The enforcer used a simple string-prefix comparison when checking whether a requested resource path was...

8.1CVSS5.8AI score0.00272EPSS
Exploits1References2
CVE
CVE
added 2026/03/31 5:1 p.m.16 views

CVE-2026-32726

SciTokens C++ prior to 1.4.1 contains an authorization bypass in path-based scope validation. The enforcer used a string-prefix check without requiring a path boundary, allowing a token scoped to one path to authorize sibling paths sharing a prefix. This vulnerability has a CVSS v3.1 base score o...

8.1CVSS5.8AI score0.00272EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2026/03/31 5:1 p.m.25 views

CVE-2026-32726 SciTokens C++: Sibling-Path Authorization Bypass

SciTokens C++ is a minimal library for creating and using SciTokens from C or C++. Prior to version 1.4.1, scitokens-cpp is vulnerable to an authorization bypass in path-based scope validation. The enforcer used a simple string-prefix comparison when checking whether a requested resource path was...

8.1CVSS0.00272EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/03/31 5:1 p.m.2 views

CVE-2026-32726

SciTokens C++ is a minimal library for creating and using SciTokens from C or C++. Prior to version 1.4.1, scitokens-cpp is vulnerable to an authorization bypass in path-based scope validation. The enforcer used a simple string-prefix comparison when checking whether a requested resource path was...

8.1CVSS5.8AI score0.00272EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder