Hedera Guardian
2 CVEs affecting Hedera Guardian. Latest disclosed: 2026-05-14. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-39911 | High | 8.8 | 2026-04-09 | Hashgraph Guardian through version 3.5.1, fixed in commit 45fbe2f, contains an unsandboxed JavaScript execution vulnerability in the Custom Logic policy block… |
CVE-2026-45248 | Medium | 5.3 | 2026-05-14 | Hedera Guardian through 3.5.1 contains an authentication bypass vulnerability in the GET /api/v1/demo/registered-users endpoint that allows unauthenticated att… |