A vulnerability has been found in dani-garcia Vaultwarden up to 1.35.x and classified as critical. Affected by this vulnerability is an unknown functionality of the component SSO Login Flow. This manipulation of the argument email_verified causes reachable assertion.
This vulnerability is handled as CVE-2026-47164. The attack can be initiated remotely. There is not any exploit available.