VYPR
Medium severity4.9NVD Advisory· Published Mar 12, 2026· Updated Jun 2, 2026

CVE-2026-2376

CVE-2026-2376

Description

A flaw was found in mirror-registry where an authenticated user can trick the system into accessing unintended internal or restricted systems by providing malicious web addresses.

When the application processes these addresses, it automatically follows redirects without verifying the final destination, allowing attackers to route requests to systems they should not have access to.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.