Apache CloudStack post-auth authentication token flaw — dropped from § 3 (gate not cleared)

cve · CVE-2026-25077

Coverage timeline

first 2026-05-09 → last 2026-05-09

Briefs

1 distinct

Sources cited

4 hosts

Sections touched

—

Co-occurring entities

no co-occurrence

Story timeline

2026-05-09CTI Daily Brief — 2026-05-09

Source distribution

cert.ssi.gouv.fr1 (25%)
httpd.apache.org1 (25%)
securityweek.com1 (25%)
thehackernews.com1 (25%)

External references

NVD · cve.org · CISA KEV

All cited sources (4)

cert.ssi.gouv.frinlineCERT-FR CERTFR-2026-AVI-0530, 2026-05-05https://www.cert.ssi.gouv.fr/
source profile · cited in 2026-05-06
httpd.apache.orginlineApache HTTP Server security pagehttps://httpd.apache.org/security/vulnerabilities_24.html
cited in 2026-05-07
securityweek.cominlineSecurityWeek, 2026-05-05https://www.securityweek.com/critical-high-severity-vulnerabilities-patched-in-apache-mina-http-server/
source profile · cited in 2026-05-07
thehackernews.cominlineThe Hacker News, 2026-05-05https://thehackernews.com/2026/05/critical-apache-http2-flaw-cve-2026.html
cited in 2026-05-06

Items in briefs about Apache CloudStack post-auth authentication token flaw — dropped from § 3 (gate not cleared)

No parsed item heading or body matches this entity yet. Items match by exact CVE id (for CVE entities), by lead-segment substring of the title in the item heading or body, or by a distinctive anchor token from the title appearing in the item heading. Coverage that lives inside a broader section (no per-item heading) is captured by the Story timeline above.