Tag

Sdk

2 briefs RSS

CVE-2026-33117: Azure SDK Improper Authentication Vulnerability

CVE-2026-33117 is a critical vulnerability in the Azure SDK that allows an unauthorized attacker to bypass a security feature over a network due to improper authentication.

Azure SDK cve authentication bypass azure sdk cloud

2r 1t 1c May 12, 2026

high advisory

Auth0.js SDK Improper Permission Checking Vulnerability

2 rules 1 TTP

The Auth0.js SDK versions 8.11.0 to 9.32.0 improperly returns user profile information when provided a crafted invalid ID token, potentially bypassing access controls relying on Auth0 Actions.

auth0.js SDK auth0 sdk vulnerability authentication

2r 1t Jan 23, 2024