CVE-2026-30968

Name of the Vulnerable Software and Affected Versions Coral Server versions prior to 1.1.0

Description Coral Server is an open collaboration infrastructure designed for communication, coordination, trust, and payments within The Internet of Agents. Before version 1.1.0, the Server Side Events (SSE) endpoint, specifically /sse/v1/..., lacked robust validation to ensure connecting agents were authorized session participants. This could potentially allow for unauthorized message injection or observation.

Recommendations Update to version 1.1.0 or later.