Skip to content
cyberHIGH2026-05-08 20:16 UTC

CVE-2026-42185 - People: Privilege Escalation via Missing Role Ceiling in Mail Domain Invitation

CVE ID :CVE-2026-42185 Published : May 8, 2026, 8:16 p.m. | 47 minutes ago Description :People is an application to handle users and teams, and distribute permissions across La Suite. Prior to version 1.25.0, a user holding the Administrator role on a mail domain could send a crafted invitatio

ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD

Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.

GET THE SUNDAY BRIEFING →

RELATED · cyber

Editorial policy · Report a correction