CVE-2026-38651
8.2 HIGHAuthentication Bypass vulnerability exists in Netmaker versions prior to 1.5.0
Published: 2026-04-28 · Last updated: 2026-05-18
Severity and scoring
- CVSS
- 8.2 HIGH
- Vector
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
- CWE
- CWE-347
Affected products
| Vendor | Product |
|---|---|
| netmaker | netmaker |
Description
Authentication Bypass vulnerability exists in Netmaker versions prior to 1.5.0. The VerifyHostToken function in logic/jwts.go fails to validate the JWT signature when verifying host tokens. An attacker can forge a JWT signed with any arbitrary key and use it to impersonate any host in the network, gaining access to sensitive information
Source: NVD
References
- [NVD]https://nvd.nist.gov/vuln/detail/CVE-2026-38651
- [Patch]https://github.com/gravitl/netmaker/commit/5309aa70d464ef565911369714d661a61481a79b
- [Exploit reference]https://www.zyenra.com/advisories/netmaker-jwt-verification-bypass
- [Exploit reference]https://www.zyenra.com/blog/netmaker-jwt-verification-bypass
- [Exploit reference]https://www.zyenra.com/advisories/netmaker-jwt-verification-bypass/
- [Exploit reference]https://www.zyenra.com/blog/netmaker-jwt-verification-bypass
Related CVEs
Same vendor
- CVE-2026-29771 — Netmaker makes networks with WireGuard (6.5 MEDIUM)
- CVE-2023-32079 — Netmaker makes networks with WireGuard (8.8 HIGH)
- CVE-2023-32078 — Netmaker makes networks with WireGuard (7.5 HIGH)
- CVE-2023-32077 — Netmaker makes networks with WireGuard (7.5 HIGH)
- CVE-2022-36110 — Netmaker makes networks with WireGuard (8.8 HIGH)
Same CWE
- CVE-2026-42462 — Fedify is a TypeScript library for building federated server apps powered by ActivityPub (7.0 HIGH)
- CVE-2026-52754 — Ghidra before 12.1 contains an authentication bypass vulnerability in PKIAuthenticationModule.authenticate() that allows any user with a ... (8.8 HIGH)
- CVE-2026-41694 — Since Spring Security SAML decrypts SAML Responses as well as elements of SAML LogoutRequests and LogoutResponses without requiring a val... (3.7 LOW)
- CVE-2026-36721 — A lack of cryptographic signature verification in the validateAccessToken function of bookcars v8.3 allows attackers to bypass authentica... (9.8 CRITICAL)
- CVE-2026-44748 — SAP NetWeaver Application Server ABAP and ABAP Platform allows an authenticated attacker with normal privileges to obtain a valid signed ... (9.9 CRITICAL)