CVE-2026-42276 | Onyx up to 3.0.8/3.1.5/3.2.5 Endpoint /chat/stop-chat-session/ authorization (GHSA-rw6w-hp62-gc8w)

A vulnerability marked as problematic has been reported in Onyx up to 3.0.8/3.1.5/3.2.5. Affected is an unknown function of the file /chat/stop-chat-session/ of the component Endpoint. The manipulation leads to authorization bypass.

This vulnerability is traded as CVE-2026-42276. It is possible to initiate the attack remotely. There is no exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More