Vulnerabilities

CVE-2026-46419

by Fred · 14/05/2026

Yubico webauthn-server-core (aka java-webauthn-server) 2.8.0 before 2.8.2 incorrectly checks a function’s return value in the second factor flow, leading to impersonation.

More information : https://github.com/Yubico/java-webauthn-server/releases/tag/2.8.2

Similar

Tags: Cybersecurity Alert