CVE-2026-56764 | Hono up to 4.11.9 BasicAuth/BearerAuth timingSafeEqual Credentials comparison

SecurityVulns

A vulnerability, which was classified as problematic, has been found in Hono up to 4.11.9. Impacted is the function timingSafeEqual of the component BasicAuth/BearerAuth. This manipulation of the argument Credentials causes incorrect comparison.

The identification of this vulnerability is CVE-2026-56764. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More