SSRF in Openidc Liboauth2
CVE-2026-54430
liboauth2 is vulnerable to Server-Side Request Forgery in oauth2_jose_jwks_aws_alb_resolve() function. The AWS ALB verifier reads both signer and kid from the unverified JWT header. If signer matches the configured ARN, kid is appended to …
Vulnerability class: SSRF (Server-Side Request Forgery)
Affected products
- Openidc Liboauth2 — versions 0
Weakness classification (CWE)
References
- cvd@cert.pl (third-party-advisory)
- cvd@cert.pl (product)
- cvd@cert.pl (issue-tracking)
- cvd@cert.pl (third-party-advisory)