All 2 CVE vulnerabilities found in auth, with AI-generated Chinese analysis, references, and POCs.
Vendor: supabase
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-42560 | auth: Patreon provider assigns the same local user ID to every authenticated Patreon account, enabling cross‑user impersonation CWE-287 | 9.1 | Critical | 2026-05-09 |
| CVE-2026-31813 | Supabase Auth has insecure Apple and Azure authentication with ID tokens CWE-290 | 4.8 | Medium | 2026-03-11 |
All 2 known CVE vulnerabilities affecting auth with full Chinese analysis, references, and POCs where available.