Yubico · Webauthn-Server-Core · CVE-2026-46419
**Name of the Vulnerable Software and Affected Versions**
Yubico webauthn-server-core versions 2.8.0 through 2.8.1
**Description**
The software incorrectly checks a function's return value during the second factor flow, which can lead to impersonation.
**Recommendations**
Update to version 2.8.2.