CVE-2026-49448 Blast Radius

CRITICAL • CVSS 9.8authentik is an open-source identity provider. Prior to versions 2025.12.6, 2026.2.4, and 2026.5.1, the Source stage can be bypassed by sending an emp…

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2026-49448.

Start Free Scan →← Back to CVE-2026-49448