Vulnerability in Drupal Openid Connect / Oauth Client

CVE-2026-3532

Improper Handling of Case Sensitivity vulnerability in Drupal OpenID Connect / OAuth client allows Privilege Escalation.This issue affects OpenID Connect / OAuth client: from 0.0.0 before 1.5.0.

EPSS: 0.000 (13.5th percentile) — read the EPSS interpretation.

Affected products

Drupal Openid Connect / Oauth Client — versions 0.0.0

Weakness classification (CWE)

CWE-178 — Improper Handling of Case Sensitivity

References

www.drupal.org/sa-contrib-2026-027