CVE-2026-41571— Note Mark 授权问题漏洞

Note Mark: OIDC-registered users authenticated by submitting password "null"

Note Mark is an open-source note-taking application. In version 0.19.2, IsPasswordMatch in backend/db/models.go falls back to a hard-coded bcrypt("null") placeholder whenever a user has no stored password. OIDC-registered users are created with an empty password, so anyone who submits password: "null" to the internal login endpoint receives a valid session for that user. The bypass is unauthenticated and requires no user interaction. This issue has been patched in version 0.19.3.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

认证机制不恰当

Note Mark 授权问题漏洞

Note Mark是Leo Spratt个人开发者的一个基于网络的Markdown笔记应用程序。 Note Mark 0.19.2版本存在授权问题漏洞，该漏洞源于IsPasswordMatch函数回退到硬编码的bcrypt空密码占位符，可能导致未经身份验证的攻击者提交密码为空时获得有效会话。

N/A

N/A