CVE-2026-33951 | SignalK signalk-server up to 2.23.x HTTP Endpoint sourcePriorities access control

Inserito da Angelo Barbosa | Apr 2, 2026 | CVE

A vulnerability was found in SignalK signalk-server up to 2.23.x and classified as critical. The affected element is an unknown function of the file /signalk/v1/api/sourcePriorities of the component HTTP Endpoint. Such manipulation leads to improper access controls.

This vulnerability is uniquely identified as CVE-2026-33951. The attack can be launched remotely. No exploit exists.

It is suggested to upgrade the affected component.

CVE-2026-33951 | SignalK signalk-server up to 2.23.x HTTP Endpoint sourcePriorities access control

Post correlati

CVE-2024-43093 | Google Android 12/13/14/15 ExternalStorageProvider.java shouldHideDocument Local Privilege Escalation

CVE-2025-10024 | EXERT Education Management System up to 23.09.2025 authorization

CVE-2024-32969 | vantage6 up to 4.5.0rc2 access control

CVE-2025-20167 | Cisco Common Services Platform Collector Software 2.11/2.11.0.1/2.11.0.2/2.11.0.3 Interface cross site scripting (cisco-sa-cspc-xss-CDOJZyH)