Auth bypass in Sovity Dataspace-portal
CVE-2026-42160
Data Space Portal is an open-source Software as a Service (SaaS) solution designed to streamline Dataspace management. From version 2.1.1 to before version 7.3.2, there is insufficient authorization in the dataspace-portal backend regardin…
EPSS: 0.001 (26.2th percentile) — read the EPSS interpretation.
Affected products
- Sovity Dataspace-portal — versions >= 2.1.1, < 7.3.2
Weakness classification (CWE)
References
- security-advisories@github.com (x_refsource_CONFIRM)
- security-advisories@github.com (x_refsource_MISC)