Skip to main content

Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

© 2026 Mondoo, Inc.

Privacy Policy Terms of Service Imprint

Vulnerability Intelligence

Vulnerability IntelligenceCVE-2026-30851

CVE-2026-30851

HIGH8.1

Caddy forward_auth copy_headers Does Not Strip Client-Supplied Headers, Allowing Identity Injection and Privilege Escalation

Published Mar 7, 2026

Modified 1 weeks ago

Details

Caddy is an extensible server platform that uses TLS by default. From version 2.10.0 to before version 2.11.2, forward_auth copy_headers does not strip client-supplied headers, allowing identity injection and privilege escalation. This issue has been patched in version 2.11.2.

References

https://github.com/caddyserver/caddy/issues/6610

https://github.com/caddyserver/caddy/pull/6608

https://github.com/caddyserver/caddy/pull/7545

https://github.com/caddyserver/caddy/security/advisories/GHSA-7r4p-vjf4-gxv4

https://www.cve.org/CVERecord?id=CVE-2026-30851

CVSS Analysis

CVSS v3.1

8.1

Exploitability

Attack Vector

NetworkAV:N

Attack Complexity

LowAC:L

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

Scope

UnchangedS:U

Impact

Confidentiality

HighC:H

Integrity

HighI:H

Availability

NoneA:N

8.1/CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Weakness Type (CWE)

Authentication

Improper Authentication

Other

Ecosystems

Timeline

PublishedMar 7, 2026

ModifiedMar 9, 2026

CVE-2026-30851 | Mondoo Vulnerability Intelligence