cyberMEDIUM2026-05-11 12:16 UTC

CVE-2025-10470 - Denial-of-Service via Magic Link Authentication in WSO2 Identity Server Allows Service Unavailability

CVE ID :CVE-2025-10470 Published : May 11, 2026, 12:16 p.m. | 49 minutes ago Description :The Magic Link authentication flow accepts multiple invalid authentication requests without adequate rate limiting or resource control, leading to uncontrolled memory usage growth. This vulnerability can

ORIGINAL SOURCE →via CVE Feed Latest

⚡ STAY AHEAD

Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.

GET THE SUNDAY BRIEFING →

RELATED · cyber

[CYBER] A fake OpenAI repository has taken top spot on Hugging Face — but all it does is push infostealer malware
[CYBER] CVE-2026-8290 - Open5GS SMF nsmf-handler.c smf_nsmf_handle_update_data_in_vsmf denial of service
[CYBER] CVE-2026-8289 - Open5GS SMF nsmf-handler.c smf_nsmf_handle_update_data_in_vsmf denial of service
[CYBER] CVE-2026-4802 - Cockpit: cockpit: arbitrary command execution via crafted links in system logs ui
[CYBER] Why Changing Passwords Doesn’t End an Active Directory Breach
[CYBER] Google says criminals used AI-built zero-day in planned mass hack spree

Editorial policy · Report a correction