CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-35467

The stored API keys in temporary browser client is not marked as protected allowing for JavScript console or other errors to allow for extraction of the encryption credentials.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 1.4%

CVSS Severity

CVSS v3 Score 7.5

References

https://github.com/CERTCC/cveClient/
https://github.com/CERTCC/cveClient/pull/39

Products affected by CVE-2026-35467

Cmu » Cveclient » Version: Any

cpe:2.3:a:cmu:cveclient:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-35467

Products

Pricing

Contact Us