CVE-2026-5749 in Fullstep정보

요약

\~에 의해 MITRE • 2026. 04. 22.

Inadequate access control in the registration process in Fullstep V5, which could allow unauthenticated users to obtain a valid JWT token with which to interact with authenticated API resources. Successful exploitation of this vulnerability could allow an unauthenticated attacker to compromise the confidentiality of the affected resource, provided they have a valid token with which to interact with the API.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

책임이 있는

INCIBE

예약하다

2026. 04. 07.

공개

2026. 04. 22.

모더레이션

수락

항목

VDB-358848

CPE

준비됨

CWE

CWE-306 (확인됨)

CVSS

5.3 (VulDB)

EPSS

0.00095

KEV

아니요

활동

낮음

출처

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-5749
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-5749
CVE Details	https://www.cvedetails.com/cve/CVE-2026-5749/

◂ 이전 개요 다음 ▸

Might our Artificial Intelligence support you?

Check our Alexa App!