PT-2026-28068 · Hypr · Hypr Server
Published
2026-03-25
·
Updated
2026-03-25
·
CVE-2026-2414
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
HYPR Server versions 9.5.2 through 10.7.1
Description
A flaw exists in HYPR Server that allows for authorization bypass through a user-controlled key, potentially leading to privilege escalation. The issue affects the server component.
Recommendations
Update HYPR Server to version 10.7.2 or later.
Fix
LPE
IDOR
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Hypr Server