CVE-2026-40458

EPSS 0.02%
Veröffentlicht 17.04.2026 13:18:26
Zuletzt bearbeitet 20.04.2026 14:41:43
Quelle cvd@cert.pl
CVE-Watchlists
Login
Unerledigt
Login

PAC4J is vulnerable to Cross-Site Request Forgery (CSRF). A malicious attacker can craft a specially designed website which, when visited by a user, will automatically submit a forged cross-site request with a token whose hash collides with the victim's legitimate CSRF token. Importantly, the attacker does not need to know the victim’s CSRF token or its hash prior to the attack. Collisions in the deterministic String.hashCode() function can be computed directly, reducing the effective token's security space to 32 bits. This bypasses CSRF protection, allowing profile updates, password changes, account linking, and any other state-changing operations to be performed without the victim's consent.

This issue was fixed in PAC4J versions 5.7.10 and 6.4.1

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 5

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Pac4j ≫ Pac4j Version >= 5.0.0 < 5.7.10

Pac4j ≫ Pac4j Version > 6.0.0 < 6.4.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.05

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.5	2.8	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
cvd@cert.pl	7	0	0	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CWE-352 Cross-Site Request Forgery (CSRF)

The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.

https://cert.pl/en/posts/2026/04/CVE-2026-40458/

Third Party Advisory

https://www.pac4j.org/blog/security-advisory-pac4j-core-and-ldap.html

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2026-40458

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-40458

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-40458

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-40458