CVE-2026-49478High· 8.7▾ TwilightFulcio has OIDC Discovery Redirect Following Allows SSRF and JWKS Substitution for Meta-Issuer Paths, with Kubernetes Service-Account Token Leakage
▾ Twilight zone — High severity, or a signal on a lesser flaw
impact 47.8 · likelihood 0 · exploitation 0
The latest CVEs are free to read. CVE-2026-49478 is outside the free window — sign in (free) to view the full technical detail, affected versions, references, and raw markdown.