CVE-2026-23899HIGH 8.8EPSS p31.8%

CVE-2026-23899CVE-2026-23899

Description

An improper access check allows unauthorized access to webservice endpoints.

Scoring

CVSS 3.18.8 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS0.40% probability of exploitation · percentile 31.8% · 2026-06-19T12:03:05Z
Published2026-04-01
Last modified2026-04-09

Underlying weaknesses· 1

CWE-284

References

  1. https://developer.joomla.org/security-centre/1032-20260306-core-improper-access-check-in-webservice-endpoints.html

1

TypeTargetConfidenceTier
WeaknessImproper Access Controlcwe-2840%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-29902
CVE
CVE-2026-34865
CVE
CVE-2026-48904
CVE
CVE-2026-3999
CVE
CVE-2026-41964
CVE
CVE-2025-25268
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.