CVE-2026-44596
Awaiting Analysis
Awaiting Analysis - Queue
Authentication Bypass in Yamcs via Brute Force
Vulnerability report for CVE-2026-44596, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.
Publication date: 2026-07-16
Last updated on: 2026-07-16
Assigner: GitHub, Inc.
Description
Description
Yamcs is a mission control framework. Prior to 5.12.7, the authentication endpoint POST /auth/token in yamcs-core, handled by yamcs-core/src/main/java/org/yamcs/http/auth/AuthHandler.java, lacked any rate limiting, account lockout, or failed-attempt throttling, so an unauthenticated remote attacker could perform unlimited password-guessing attempts against any user account, significantly increasing the risk of successful brute-force attacks. This issue is fixed in versions 5.12.7 and 5.13.0.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| yamcs | yamcs-core | 5.12.7 |
| yamcs | yamcs-core | 5.13.0 |
| yamcs | yamcs-core | to 5.12.7 (exc) |
| yamcs | yamcs-core | to 5.13.0 (exc) |
| yamcs | yamcs | to 5.12.7 (exc) |
| yamcs | yamcs | From 5.13.0 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-307 | The product does not implement sufficient measures to prevent multiple failed authentication attempts within a short time frame. |