CVE-2026-25958

Awaiting Analysis Awaiting Analysis - Queue

Privilege Escalation in Cube Semantic Layer via Crafted API Request

Publication date: 2026-02-09

Last updated on: 2026-02-19

Assigner: GitHub, Inc.

Description

Cube is a semantic layer for building data applications. From 0.27.19 to before 1.5.13, 1.4.2, and 1.0.14, it is possible to make a specially crafted request with a valid API token that leads to privilege escalation. This vulnerability is fixed in 1.5.13, 1.4.2, and 1.0.14.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published

2026-02-09

Last Modified

2026-02-19

Generated

2026-06-16

AI Q&A

2026-02-10

EPSS Evaluated

2026-06-14

NVD

CVE-2026-25958

EUVD

EUVD-2026-6241

Affected Vendors & Products

Vendor	Product	Version / Range
cube	cube.js	From 0.27.19 (inc) to 1.0.14 (exc)
cube	cube.js	From 1.1.0 (inc) to 1.4.2 (exc)
cube	cube.js	From 1.5.0 (inc) to 1.5.13 (exc)

Helpful Resources

Exploitability

CWE

KEV

CWE ID	Description
CWE-807	The product uses a protection mechanism that relies on the existence or values of an input, but the input can be modified by an untrusted actor in a way that bypasses the protection mechanism.

Attack-Flow Graph

Executive Summary

This vulnerability exists in Cube, a semantic layer for building data applications. In versions from 0.27.19 up to but not including 1.5.13, 1.4.2, and 1.0.14, an attacker with a valid API token can craft a special request that leads to privilege escalation.

Impact Analysis

The vulnerability allows an attacker with a valid API token to escalate their privileges, potentially gaining higher access rights than intended. This can lead to unauthorized access to sensitive data or system functions.

Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

To mitigate this vulnerability, you should upgrade Cube to one of the fixed versions: 1.5.13, 1.4.2, or 1.0.14.

Hi! I’m here to help you understand CVE-2026-25958. Ask me anything about the vulnerability, its impact, or mitigation strategies.

0/70

CVE-2026-25958

Privilege Escalation in Cube Semantic Layer via Crafted API Request

Description

CVSS Scores

EPSS Scores

Meta Information

Affected Vendors & Products

Helpful Resources

Exploitability

Attack-Flow Graph

AI Quick Actions

Chat Assistant

EPSS Chart