CVE-2026-55438
MEDIUM SEVERITYCVSS Score & Metrics
Base Score
5.8 / 10
Vulnerability Description
Coder's workspace app CORS origin check can be bypassed via UUID-based subdomain spoofing
Vulnerability Details
Published Date
Last Modified
Source
GitHub
Vendor
go
Product
github.com/coder/coder/v2
Discussion (0)
Add Comment
No comments yet. Be the first!