CVE-2026-22207 | Volcengine OpenViking up to 0.1.18 root_api_key missing authentication (0251c70)

Inserito da Angelo Barbosa | Feb 26, 2026 | CVE

A vulnerability identified as critical has been detected in Volcengine OpenViking up to 0.1.18. Affected by this issue is some unknown functionality. Performing a manipulation of the argument root_api_key results in missing authentication.

This vulnerability was named CVE-2026-22207. The attack may be initiated remotely. There is no available exploit.

It is recommended to apply a patch to fix this issue.

CVE-2026-22207 | Volcengine OpenViking up to 0.1.18 root_api_key missing authentication (0251c70)

Post correlati

CVE-2024-26814 | Linux Kernel up to 6.1.83/6.6.23/6.7.11/6.8.2 request_irq infinite loop

CVE-2024-27098 | GLPI up to 10.0.12 server-side request forgery

CVE-2025-3091 | MB connect line/Helmholz mbCONNECT24/mymbCONNECT24/myREX24/myREX24.virtual prior 2.16.5 authorization (VDE-2025-035)

CVE-2025-69563 | code-projects Mobile Shop Management System 1.0 /ExLogin.php Password sql injection