CyberRota
← Ana sayfaya dön

CVE-2026-39998

HIGH · CVSS 8.8 EPSS %0.40

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-19T14:16:21.823 · Çekilme zamanı: 2026-06-30T12:26:51.424070+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-39998
Severity
HIGH
CVSS
8.8
EPSS
%0.40
Apache

Orijinal NVD Açıklaması

Improper Input Validation vulnerability in Apache APISIX. The attacker can take advantage of certain configuration in forward-auth plugin to spoof identity headers. This issue affects Apache APISIX: from 2.12.0 through 3.16.0. Users are recommended to upgrade to version 3.17.0, which fixes the issue.