What is CVE-2026-29023?

CVE-2026-29023 is a high-severity vulnerability in Keygraphhq Shannon, classified under Use of Hard-coded Credentials. CVSS score: 7.3/10. Published 2026-03-09.

How severe is CVE-2026-29023?

High severity. CVSS v3 base score is 7.3 out of 10.

Vulnerability in Keygraphhq Shannon

CVE-2026-29023

Keygraph Shannon contains a hard-coded API key in its router configuration that, when the router component is enabled and exposed, allows network attackers to authenticate using the publicly known static key. An attacker able to reach the…

EPSS: 0.001 (18.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.3 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L.

Affected products

Keygraphhq Shannon — versions 0

Weakness classification (CWE)

CWE-798 — Use of Hard-coded Credentials

References

disclosure@vulncheck.com (issue-tracking)
disclosure@vulncheck.com (release-notes)
disclosure@vulncheck.com (mitigation)
disclosure@vulncheck.com (third-party-advisory)

Frequently asked questions

What is CVE-2026-29023?: CVE-2026-29023 is a high-severity vulnerability in Keygraphhq Shannon, classified under Use of Hard-coded Credentials. CVSS score: 7.3/10. Published 2026-03-09.
How severe is CVE-2026-29023?: High severity. CVSS v3 base score is 7.3 out of 10.