CVE-2026-35210
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N
Summary
OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Prior to 7.260326.0, an authorization bypass vulnerability in OpenCTI allows any authenticated user with KNOWLEDGE_KNUPDATE permission to bypass Confidence Level validation and Object Marking restrictions by injecting the synchronized-upsert: true HTTP header, enabling attackers to downgrade confidence levels, remove security markings such as TLP:RED, manipulate relationships, and affect STIX object types including Indicators, ThreatActors, Malware, and Reports. This issue is fixed in version 7.260326.0.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| OpenCTI-Platform | opencti | < 7.260326.0 | affected |
Weaknesses
- CWE-639: CWE-639: Authorization Bypass Through User-Controlled Key
- CWE-863: CWE-863: Incorrect Authorization
References
- https://github.com/OpenCTI-Platform/opencti/security/advisories/GHSA-36fr-4m54-94mj
- https://github.com/OpenCTI-Platform/opencti/pull/14243
- https://github.com/OpenCTI-Platform/opencti/commit/134531ddf5ecf741006b7f0870b7c36711b96540
- https://github.com/OpenCTI-Platform/opencti/releases/tag/7.260326.0
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.