CVE-2026-58399 | antonio-castellon module-auth up to 2.2.x Headers /JWT/OIDC validateToken improper authentication

SecurityVulns

A vulnerability marked as critical has been reported in antonio-castellon module-auth up to 2.2.x. The impacted element is the function validateToken of the file /JWT/OIDC of the component Headers Handler. This manipulation causes improper authentication.

This vulnerability is tracked as CVE-2026-58399. The attack is possible to be carried out remotely. No exploit exists.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More