CVE-2026-48096EPSS p0.7%

CVE-2026-48096CVE-2026-48096

openfga / helm_charts

Description

OpenFGA is an authorization/permission engine built for developers. Prior to version 1.16.0, when iterator caching is enabled, two distinct check requests can produce the same cache key, leading to OpenFGA reusing an earlier cached result for a subsequent request. This issue has been patched in version 1.16.0.

Scoring

CVSS 5.0 ()
VectorCVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L
EPSS0.09% probability of exploitation · percentile 0.7% · 2026-06-18T12:00:27Z
Last modified2026-06-12

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-33729
CVE
CVE-2026-34972
CVE
CVE-2026-24851
CVE
CVE-2025-25196
CVE
CVE-2025-46331
CVE
CVE-2025-48371
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.