CVE-2026-1496 | Black Duck Coverity prior 2025.12.1 API Endpoint /token authorization

Inserito da Angelo Barbosa | Mar 27, 2026 | CVE

A vulnerability was found in Black Duck Coverity up to 2024.12.1/2025.3.1/2025.6.3/2025.9.2/2025.12.0. It has been declared as critical. This impacts an unknown function of the file /token of the component API Endpoint. Such manipulation leads to authorization bypass.

This vulnerability is uniquely identified as CVE-2026-1496. The attack can be launched remotely. No exploit exists.

It is recommended to upgrade the affected component.

CVE-2026-1496 | Black Duck Coverity prior 2025.12.1 API Endpoint /token authorization

Post correlati

CVE-2024-26622 | Linux Kernel up to 6.8-rc6 tomoyo_write_control use after free (2f03fc340cac)

CVE-2024-50431 | Cloudways Breeze Plugin up to 2.1.14 on WordPress cross site scripting

CVE-2025-23476 | isnowfy my-related-posts Plugin up to 1.1 on WordPress cross-site request forgery

CVE-2026-0839 | UTT 进取 520W 1.7.7-180627 /goform/APSecurity strcpy wepkey1 buffer overflow