Vulnerabilities ›

CVE-2026-7679

High

CWE-287 — Weakness Type

                    Published: May 3, 2026                      ·  Modified: May 10, 2026                      ·  Source: NVD                

CVSS v3

7.3

🔗 NVD Official

📄 Description (English)

A security flaw has been discovered in YunaiV yudao-cloud up to 2026.01. This impacts the function getAccessToken of the file yudao-module-system-biz/src/main/java/io/github/ruoyi/common/oauth2/service/impl/OAuth2TokenServiceImpl.java. Performing a manipulation results in improper authentication. The attack can be initiated remotely. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.

🤖 AI Executive Summary

CVE-2026-7679 is an authentication bypass vulnerability in YunaiV yudao-cloud versions up to 2026.01 affecting the OAuth2 token service implementation. Remote attackers can manipulate the getAccessToken function to bypass authentication mechanisms without requiring valid credentials.

📄 Description (Arabic)

تؤثر هذه الثغرة على خدمة OAuth2 في yudao-cloud وتسمح بتجاوز آليات المصادقة من خلال التلاعب بدالة getAccessToken. يمكن للمهاجمين البعيدين استغلال هذه الثغرة للوصول غير المصرح إليه دون بيانات اعتماد صحيحة. تم الإفراج عن استغلال عام لهذه الثغرة مما يزيد من خطورتها.

🤖 ملخص تنفيذي (AI)

A critical authentication flaw exists in YunaiV yudao-cloud that allows remote attackers to bypass OAuth2 token validation. The vulnerability in the OAuth2TokenServiceImpl class enables unauthorized access through token manipulation.

🤖 AI Intelligence Analysis Analyzed: May 7, 2026 01:02

🇸🇦 Saudi Arabia Impact Assessment

Saudi Relevance: high

🏢 Affected Saudi Sectors

banking telecom government healthcare

🎯 MITRE ATT&CK Techniques

T1078.001 T1556 T1550.001

⚖️ Saudi Risk Score (AI)

7.0

/ 10.0

🔧 Remediation Steps (English)

Immediately upgrade YunaiV yudao-cloud to version 2026.02 or later. Implement network segmentation to restrict access to OAuth2 endpoints. Deploy Web Application Firewall (WAF) rules to detect token manipulation attempts. Review and revoke all active tokens issued before the patch. Monitor authentication logs for suspicious token generation patterns. Implement additional authentication factors (MFA) for critical operations.

🔧 خطوات المعالجة (العربية)

قم بالترقية الفورية إلى الإصدار 2026.02 أو أحدث. طبق تقسيم الشبكة لتقييد الوصول إلى نقاط نهاية OAuth2. نشر قواعد جدار الحماية لاكتشاف محاولات التلاعب بالرموز. مراجعة وإلغاء جميع الرموز النشطة الصادرة قبل التصحيح. مراقبة سجلات المصادقة للأنماط المريبة. تطبيق عوامل مصادقة إضافية للعمليات الحرجة.

📋 Regulatory Compliance Mapping

🟢 NCA ECC 2024

5.1.1 5.1.2 5.2.1

🔵 SAMA CSF

AC-2 AC-3 IA-2 IA-4

🟡 ISO 27001:2022

A.9.2.1 A.9.4.3 A.10.1.1

🔗 References & Sources 4

🔗

https://github.com/9str0IL/CVE/issues/1

cna@vuldb.com

🔗

https://vuldb.com/submit/800866

cna@vuldb.com

🔗

https://vuldb.com/vuln/360832

cna@vuldb.com

🔗

https://vuldb.com/vuln/360832/cti

cna@vuldb.com

📊 CVSS Score

7.3

/ 10.0 — High

📊 CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Attack VectorN — None / Network

Attack ComplexityL — Low / Local

Privileges RequiredN — None / Network

User InteractionN — None / Network

ScopeU — Unchanged

ConfidentialityL — Low / Local

IntegrityL — Low / Local

AvailabilityL — Low / Local

📋 Quick Facts

Severity High

CVSS Score7.3

CWECWE-287

EPSS0.08%

Exploit No

Patch ✗ No

Published 2026-05-03

Source Feed nvd

🇸🇦 Saudi Risk Score

7.0

/ 10.0 — Saudi Risk

Priority: HIGH

🏷️ Tags

CWE-287

⚡ Actions

🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details

💬 Comments

Loading comments

CVE-2026-7679

💬 Comments

Join CISO Consulting

Introduce Yourself

Sign In Required