CVE-2026-33875 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Gematik Authenticator securely authenticates users for login to digital health applications. Versions prior to 4.16.0 are vulnerable to authentication flow hija…
Critical CVSS: 9.3

CVE-2026-33875

Gematik Authenticator securely authenticates users for login to digital health applications. Versions prior to 4.16.0 are vulnerable to authentication flow hijacking, potentially allowing attackers to authenticate with the identities of victim users who click on a malicious deep link. Update Gematik Authenticator to version 4.16.0 or greater to receive a patch. There are no known workarounds.
Vendor
Gematik
Product
Authenticator
CWE
CWE-940
Yayın Tarihi
2026-03-27 21:17:24
Güncelleme
2026-04-03 16:16:40
Source Identifier
security-advisories@github.com
KEV Date Added
-

Kategoriler

CWE-940 Authenticator CRITICAL Gematik 2026

Referanslar

https://github.com/gematik/app-Authenticator/security/advisories/GHSA-qg87-cf56-2rmr https://www.machinespirits.com/advisory/f41e56/