CVE-2025-67796 - IKUS Rdiffweb Improper Authorization Vulnerability
CVE ID :CVE-2025-67796 Published : May 4, 2026, 8:16 p.m. | 1 hour, 54 minutes ago Description :IKUS Rdiffweb before 2.10.5 has an improper authorization flaw that allows an attacker with any valid or stolen access token to act as other users. The API does not enforce binding between the authe
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Australia's ALS restores most services after cyber incident; data impact under review
- [CYBER] L1 SOC Analyst for ~2 years - Should I still get the Security + Certification?
- [CYBER] Someone Built an Open-Source 'Theoretical Mythos' to Reverse-Engineer Anthropic's Most Dangerous AI
- [CYBER] Podman rootless containers and the Copy Fail exploit
- [CYBER] Weaver E-cology critical bug exploited in attacks since March
- [CYBER] CVE-2026-7776 - Boundary Workers Vulnerable to Denial of Service During TLS Handshake