Skip to main content
Loading…
    CVE-2026-6272 — A client holding only a read JWT scope can still register itself as a signal provider through the production kuksa.val.v2 OpenProviderStream API by sending ProvideSignalRequest. — CVE Database · The Intelligence Room