Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-43913 |
|
Authorization Flaw in dani-garcia (CVE-2026-43913)
vulnerability in dani-garcia (CVE-2026-43913). Data can be tampered with by attackers. Exploitable via `POST /api/ciphers/purge`. Mitigation: upgrade to `1.35.5` or later.
|
| CVE-2026-43914 |
|
Vulnerability in dani-garcia (CVE-2026-43914)
vulnerability in dani-garcia (CVE-2026-43914). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.35.4` or later.
|
| CVE-2026-43911 |
|
Vulnerability in dani-garcia (CVE-2026-43911)
vulnerability in dani-garcia (CVE-2026-43911). Confidential information can be exposed externally. Mitigation: upgrade to `1.35.5` or later.
|
| CVE-2026-43912 |
|
Vulnerability in dani-garcia (CVE-2026-43912)
vulnerability in dani-garcia (CVE-2026-43912). Confidential information can be exposed externally. Mitigation: upgrade to `1.35.5` or later.
|
| CVE-2026-33420 |
|
Vulnerability in dani-garcia (CVE-2026-33420)
vulnerability in dani-garcia (CVE-2026-33420). Risk of unauthorized operations or information disclosure. Exploitable via `GET /api/organizations/{org_id}/collections/details`.
|
| CVE-2026-31835 |
|
Vulnerability in dos (CVE-2026-31835)
vulnerability in dos (CVE-2026-31835). Risk of unauthorized operations or information disclosure. Exploitable via ``authenticatorData``.
|