Lucene search
K

Missing Authentication for Critical Function

🗓️ 06 Apr 2026 18:03:24Reported by Snyk Security DatabaseType 
snyk
 snyk
🔗 security.snyk.io👁 3 Views

Vite WebSocket fetchModule allows file access when the server is network exposed; upgrade to 6.4.2, 7.3.2, or 8.0.5+.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
GithubExploit
Exploit for CVE-2026-39363
8 Apr 202615:31
githubexploit
GithubExploit
Exploit for Missing Authentication for Critical Function in Vitejs Vite
6 May 202603:42
githubexploit
ATTACKERKB
CVE-2026-39363
7 Apr 202619:10
attackerkb
Chainguard
CVE-2026-39363 vulnerabilities
10 Apr 202602:14
cgr
Circl
CVE-2026-39363
6 Apr 202612:11
circl
CNNVD
Vite 访问控制错误漏洞
7 Apr 202600:00
cnnvd
CVE
CVE-2026-39363
7 Apr 202619:10
cve
Cvelist
CVE-2026-39363 Vite Affected by Arbitrary File Read via Vite Dev Server WebSocket
7 Apr 202619:10
cvelist
Github Security Blog
Vite Vulnerable to Arbitrary File Read via Vite Dev Server WebSocket
6 Apr 202618:03
github
NVD
CVE-2026-39363
7 Apr 202620:16
nvd
Rows per page
Vulners
Node
vitejsviteRange6.0.06.4.2
OR
vitejsviteRange7.0.07.3.2
OR
vitejsviteRange8.0.08.0.5

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

16 Apr 2026 01:23Current
5.9Medium risk
Vulners AI Score5.9
CVSS 3.17.5
CVSS 48.2
EPSS0.02907
3