CVE-2026-40587 | blueprintue blueprintue-self-hosted-edition up to 4.1.x Password Change session expiration (GHSA-gqpq-x62g-p4mg)

A vulnerability identified as problematic has been detected in blueprintue blueprintue-self-hosted-edition up to 4.1.x. This issue affects some unknown processing of the component Password Change Handler. This manipulation causes session expiration.

The identification of this vulnerability is CVE-2026-40587. It is possible to initiate the attack remotely. There is no exploit available.

You should upgrade the affected component.VulDB Recent EntriesRead More