CVE-2026-48611
CRITICAL
NVD
CVSS Score
9.8
Severity
CRITICAL
Published
Jun 12, 2026
Vendor
unknown
Description
Improper authentication checks in the OAuth implementation allow account hijacking even when OAuth is not configured or enabled leading to unauthorized access in default installations.