CVE-2026-33527 | parse-community parse-server up to 8.6.56/9.6.0-alpha.47 REST API authorization (GHSA-jc39-686j-wp6q)

Inserito da Angelo Barbosa | Mar 24, 2026 | CVE

A vulnerability identified as problematic has been detected in parse-community parse-server up to 8.6.56/9.6.0-alpha.47. This issue affects some unknown processing of the component REST API. Performing a manipulation results in incorrect authorization.

This vulnerability is identified as CVE-2026-33527. The attack can be initiated remotely. There is not any exploit available.

You should upgrade the affected component.

CVE-2026-33527 | parse-community parse-server up to 8.6.56/9.6.0-alpha.47 REST API authorization (GHSA-jc39-686j-wp6q)

Post correlati

CVE-2026-3847 | Mozilla Firefox up to 148.0.1 memory corruption

CVE-2024-39686 | FishAudio Bert-VITS2 up to 2.3 bert_gen data_dir os command injection (GHSL-2024-045)

CVE-2025-48704 | Pexip Infinity up to 37.x Signalling assertion

CVE-2025-25948 | Serosoft Academia Student Information System EagleR 1.0.118 create access control