CVE-2026-43640 | bitwarden server up to 2026.4.0 incorrect implementation of authentication algorithm

May 11, 2026 Yanac

A vulnerability, which was classified as critical, was found in bitwarden server up to 2026.4.0. Affected by this vulnerability is an unknown functionality. Such manipulation leads to incorrect implementation of authentication algorithm.

This vulnerability is traded as CVE-2026-43640. The attack may be launched remotely. There is no exploit available.

You should upgrade the affected component.VulDB Recent EntriesRead More