CVE-2026-32130 | Zitadel up to 3.4.7/4.12.1 path authentication bypass (GHSA-83pv-4xxp-rm2x)

Inserito da Angelo Barbosa | Mar 12, 2026 | CVE

A vulnerability labeled as critical has been found in Zitadel up to 3.4.7/4.12.1. Affected by this issue is some unknown functionality. Executing a manipulation of the argument path can lead to authentication bypass using alternate channel.

This vulnerability is handled as CVE-2026-32130. The attack can be executed remotely. There is not any exploit available.

The affected component should be upgraded.

CVE-2026-32130 | Zitadel up to 3.4.7/4.12.1 path authentication bypass (GHSA-83pv-4xxp-rm2x)

Post correlati

CVE-2025-4332 | PHPGurukul Company Visitor Management System 2.0 /visitor-detail.php editid sql injection

CVE-2025-4908 | PHPGurukul Daily Expense Tracker System 1.1 expense-datewise-reports-detailed.php fromdate/todate sql injection

CVE-2025-4765 | PHPGurukul Zoo Management System 2.1 /admin/contactus.php mobnum sql injection

CVE-2023-5376 | Korenix JetNet prior 2024/01 TFTP Service improper authentication