What is CVE-2023-26481?

CVE-2023-26481 is a critical-severity vulnerability in Goauthentik Authentik, classified under Insufficient Verification of Data Authenticity. CVSS score: 9.1/10. Published 2023-03-04.

How severe is CVE-2023-26481?

Critical severity. CVSS v3 base score is 9.1 out of 10.

Is CVE-2023-26481 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Goauthentik Authentik

CVE-2023-26481

authentik is an open-source Identity Provider. Due to an insufficient access check, a recovery flow link that is created by an admin (or sent via email by an admin) can be used to set the password for any arbitrary user. This attack is onl…

EPSS: 0.001 (24.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 9.1 (Critical). Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H.

Affected products

Goauthentik Authentik — versions < 2023.2.3, < 2023.1.3, < 2022.12.2

Weakness classification (CWE)

CWE-345 — Insufficient Verification of Data Authenticity

Public proof-of-concept exploits

ARPSyndicate/cve-scores

References

https://github.com/goauthentik/authentik/security/advisories/GHSA-3xf5-pqvf-rqq3 (x_refsource_CONFIRM)
https://goauthentik.io/docs/releases/2023.2#fixed-in-202323 (x_refsource_MISC)

Frequently asked questions

What is CVE-2023-26481?: CVE-2023-26481 is a critical-severity vulnerability in Goauthentik Authentik, classified under Insufficient Verification of Data Authenticity. CVSS score: 9.1/10. Published 2023-03-04.
How severe is CVE-2023-26481?: Critical severity. CVSS v3 base score is 9.1 out of 10.
Is CVE-2023-26481 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.