High severity7.6NVD Advisory· Published May 7, 2026· Updated May 7, 2026

CVE-2026-43510

Description

manage.get.gov is the .gov TLD registrar maintained by CISA. manage.get.gov allows an organization administrator to assign domain manager privileges for domains not already in another organization. Fixed in 1.176.0 on or around 2026-04-30.

Affected products

Cisagov/Manage.get.govreferences

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/cisagov/manage.get.gov/issues/4858nvd
github.com/cisagov/manage.get.gov/pull/4900nvd
github.com/cisagov/manage.get.gov/releases/tag/v1.176.0nvd
github.com/cisagov/manage.get.gov/security/advisories/GHSA-6wrg-x3j6-x464nvd
raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2026/va-26-121-01.jsonnvd
www.cve.org/CVERecordnvd

News mentions

No linked articles in our index yet.

cvss	0.494
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000