CVE-2026-41893 | SignalK signalk-server up to 2.24.x HTTP Login Endpoint /login app.securityStrategy.login excessive authentication (GHSA-vmfm-ch9h-5c7g)

A vulnerability, which was classified as problematic, was found in SignalK signalk-server up to 2.24.x. Affected by this issue is the function app.securityStrategy.login of the file /login of the component HTTP Login Endpoint. Such manipulation leads to improper restriction of excessive authentication attempts.

This vulnerability is uniquely identified as CVE-2026-41893. The attack can be launched remotely. No exploit exists.

You should upgrade the affected component.VulDB Recent EntriesRead More