CVE-2026-40960 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Luanti 5 before 5.15.2 sometimes allows unintended access to an insecure environment. If at least one mod is listed as secure.trusted_mods or secure.http_mods,…
High CVSS: 8.1

CVE-2026-40960

Luanti 5 before 5.15.2 sometimes allows unintended access to an insecure environment. If at least one mod is listed as secure.trusted_mods or secure.http_mods, then a crafted mod can intercept the request for the insecure environment or HTTP API, and also receive access to it.
Vendor
-
Product
-
CWE
CWE-670
Yayın Tarihi
2026-04-16 01:16:11
Güncelleme
2026-04-17 15:38:09
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-670 HIGH 2026

Referanslar

https://github.com/luanti-org/luanti/commit/0faf529bc4b89e70a275ed1162047815118f2413 https://github.com/luanti-org/luanti/commit/827fd4cf7f989482b2dad381fa4afd642ea73e8c https://github.com/luanti-org/luanti/security/advisories/GHSA-22c4-238c-m5j4