CVE-2026-25767HIGH 8.1EPSS p16.2%

CVE-2026-25767CVE-2026-25767

Description

LavinMQ is a high-performance message queue & streaming server. Before 2.6.8, an authenticated user, with the “Policymaker” tag, could create shovels bypassing access controls. an authenticated user with the "Policymaker" management tag could exploit it to read messages from vhosts they are not authorized to access or publish messages to vhosts they are not authorized to access. This vulnerability is fixed in 2.6.8.

Scoring

CVSS 3.18.1 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
EPSS0.25% probability of exploitation · percentile 16.2% · 2026-06-18T12:00:27Z
Published2026-02-12
Last modified2026-02-20

Underlying weaknesses· 1

CWE-863

References

  1. https://github.com/cloudamqp/lavinmq/commit/3a83e5894495b60c7c32a79c3dbc9bd9fa237d9a
  2. https://github.com/cloudamqp/lavinmq/commit/be03da31f3db1a2552f7094ff58e953ef50cdc82
  3. https://github.com/cloudamqp/lavinmq/pull/1670
  4. https://github.com/cloudamqp/lavinmq/pull/1687
  5. https://github.com/cloudamqp/lavinmq/security/advisories/GHSA-wh37-6vrr-r9wg

1

TypeTargetConfidenceTier
WeaknessIncorrect Authorizationcwe-8630%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-44839
CVE
CVE-2026-25112
CVE
Apache RocketMQ Command Execution Vulnerability
CVE
CVE-2026-49157
CVE
CVE-2026-44838
CVE
CVE-2026-46605
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.