CVE-2026-48096Medium· 5.0▾ SunlitOpenFGA has cache-key delimiter injection in shared-iterator and v2 iterator that caches enables intra-store authorization-decision poisoning
▾ Sunlit zone — Low / medium · no exploitation signal
impact 27.5 · likelihood 0 · exploitation 0
The latest CVEs are free to read. CVE-2026-48096 is outside the free window — sign in (free) to view the full technical detail, affected versions, references, and raw markdown.