ГлавнаяУязвимости → CVE-2026-29193
8.2высокая

CVE-2026-29193

Описание

ZITADEL is an open source identity management platform. From version 4.0.0 to 4.12.0, a vulnerability in Zitadel's login V2 UI allowed users to bypass login behavior and security policies and self-register new accounts or sign in using password even if corresponding options were disabled in their organizaton. This issue has been patched in version 4.12.1.

Затрагиваемое ПО
Zitadel Zitadel
CVSS
Балл8.2 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
Источники
https://github.com/zitadel/zitadel/security/advisories/GHSA-25rw-g6ff-fmg8