CNNVD-202602-981 Information
Feb 06, 2026
cve
CNNVD ID
CNNVD-202602-981
Related CVE
- CNNVD Published: 2026-02-06
Description (Chinese)
OpenFGA是OpenFGA开源的一款为开发人员构建并受 Google Zanzibar 启发的高性能和灵活的授权/许可引擎。 OpenFGA v1.8.5至v1.11.2版本存在安全漏洞,该漏洞源于特定检查调用时策略执行不当。
Description (English)
OpenFGA is an OpenFGA open source for high-performance and flexible enabling/licensing engines built by developers and inspired by Google Zanzibar. There is a security gap between OpenFGA v1.8.5 and v1.11.2, which stems from the inappropriate implementation of a particular inspection call-in strategy.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
OpenFGA
Published
2026-02-06
Last Modified
2026-02-24
References
https://github.com/openfga/openfga/releases/tag/v1.11.3 https://github.com/openfga/openfga/security/advisories/GHSA-jq9f-gm9w-rwm9
Patch
https://github.com/openfga/openfga/releases
Share on: