Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Roadiz OIDC nonce not verified leading to ID token replay (CVE-2026-4206)

github.com 2026-05-09查看中文 →
Security AdvisoryCVE-2026-4206MediumRoadiz
Affected:
  • roadiz/openid < 2.7.18
  • roadiz/openid < 2.6.31
  • roadiz/openid < 2.5.45
  • roadiz/openid < 2.3.43
Fixed in:
  • 2.7.18
  • 2.6.31
  • 2.5.45
  • 2.3.43
Referenced CVEs: CVE-2026-42206
This content was auto-fetched from github.com, cleaned by our LLM pipeline, and translated to English. View original.
More from this source
Open5GS SMF NULL Pointer Dereference DoS via Missing vcnTunnelInfo 2026-05-11 Open5GS SMF Stack Overflow and Assertion Failure Leading to DoS via Oversized PCC Rules 2026-05-11 Open5GS SMF Null Pointer Dereference Crash Vulnerability 2026-05-11 SMF Vulnerability: POST oversized flowInfos causes crash (PoC) 2026-05-11 Open5GS SMF smPolicyNotify Assertion Crash via Invalid ARP preemptCap 2026-05-11