Critical severity9.8NVD Advisory· Published Mar 25, 2026· Updated Apr 1, 2026

CVE-2026-2414

Description

Authorization bypass through User-Controlled key vulnerability in HYPR Server allows Privilege Escalation.This issue affects Server: from 9.5.2 before 10.7.2.

Affected products

Hypr/Hypr
cpe:2.3:a:hypr:hypr:*:*:*:*:*:*:*:*
Range: >=9.5.2,<10.7.2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.hypr.com/trust-center/security-advisoriesnvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000