CVE-2026-44347

Source
https://cve.org/CVERecord?id=CVE-2026-44347
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-44347.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-44347
Aliases
  • GHSA-rj86-hm3r-c275
Published
2026-05-12T22:44:17.831Z
Modified
2026-07-08T08:02:16.401474312Z
Severity
  • 5.8 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:H/A:N CVSS Calculator
Summary
Warpgate: SSO CSRF -- State Token Not Validated on Return
Details

Warpgate is an open source SSH, HTTPS and MySQL bastion host for Linux. Prior to 0.23.3, the SSO flow does not validate the state parameter, which makes it possible for an attacker to trick a user into logging into the attacker's account, possibly convincing them to perform sensitive actions on the attacker's account (such as writing sensitive data to the attacker's SSH target, or logging into an HTTP target that the attacker set up). This vulnerability is fixed in 0.23.3.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/44xxx/CVE-2026-44347.json",
    "cwe_ids": [
        "CWE-352"
    ],
    "cna_assigner": "GitHub_M"
}
References

Affected packages

Git / github.com/warp-tech/warpgate

Affected ranges

Type
GIT
Repo
https://github.com/warp-tech/warpgate
Events
Database specific
{
    "source": [
        "AFFECTED_FIELD",
        "CPE_STRING"
    ],
    "cpe": "cpe:2.3:a:warpgate_project:warpgate:0.23.2:*:*:*:*:*:*:*",
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "fixed": "0.23.3"
        },
        {
            "introduced": "0.23.2"
        },
        {
            "last_affected": "0.23.2"
        }
    ]
}

Affected versions

0.*
0.23.2
v0.*
v0.23.2

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-44347.json"