CVE-2026-47158 | dani-garcia Vaultwarden up to 1.35.x SSO Authorization Flow /connect/authorize state improper authorization

SecurityVulns

A vulnerability labeled as problematic has been found in dani-garcia Vaultwarden up to 1.35.x. The impacted element is the function authorize of the file /connect/authorize of the component SSO Authorization Flow. Such manipulation of the argument state leads to improper authorization.

This vulnerability is listed as CVE-2026-47158. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More