CVE-2026-42606 | AzuraCast up to 0.23.5 Password Reset password recovery (GHSA-gv7r-3mr9-h5x8)

A vulnerability classified as critical was found in AzuraCast up to 0.23.5. This affects an unknown part of the component Password Reset Handler. Such manipulation leads to weak password recovery.

This vulnerability is traded as CVE-2026-42606. The attack may be launched remotely. There is no exploit available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More