Product
Coder Tailnet Vulnerability (CVE-2026-55428) Leads to Route Hijacking
1 TTPA high-severity vulnerability (CVE-2026-55428) in Coder's tailnet coordinator allows a malicious workspace agent to hijack network routes by advertising arbitrary `AllowedIPs` prefixes, enabling interception and spoofing of web terminal and workspace application traffic.
Coder OIDC email_verified Type Coercion Bypass (CVE-2026-55076)
3 TTPsA vulnerability, CVE-2026-55076, in Coder's OpenID Connect (OIDC) authentication callback allowed an attacker to bypass email verification due to improper Go boolean type assertion of the `email_verified` claim, leading to full account takeover for existing user accounts.
Coder OIDC Account Takeover Vulnerabilities (CVE-2026-55075)
2 TTPsTwo critical flaws in Coder's OIDC login mechanism, CVE-2026-55075, allow an attacker to achieve account takeover by exploiting email-based user matching without proper IdP subject checks and bypassing the `email_verified` claim, leading to full access to victim workspaces and resources.