PT-2026-22583 · Simstudio · Simstudio
Published
2026-03-02
·
Updated
2026-03-07
·
CVE-2026-3432
CVSS v4.0
9.3
Critical
| Vector | AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
SimStudio versions prior to 0.5.74
Description
The
/api/auth/oauth/token endpoint in SimStudio has a code path that circumvents authorization checks when provided with the credentialAccountUserId and providerId parameters. An unauthenticated attacker can obtain OAuth access tokens for any user by providing their user ID and a provider name, potentially compromising credentials to third-party services.Recommendations
Update SimStudio to version 0.5.74 or later. As a temporary workaround, restrict access to the
/api/auth/oauth/token endpoint.Fix
Missing Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Simstudio