CVE-2026-5557

CVSS v2.0

6.5

Medium

Vector

AV:N/AC:L/Au:S/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions badlogic pi-mono versions up to 0.58.4

Description A flaw exists in the processing of the slack.ts file within the pi-mom Slack Bot component. This allows for authentication bypass through alternate channel manipulation. The attack can be executed remotely.

Recommendations Update to a version newer than 0.58.4

Exploit

Fix

Authentication Bypass Using an Alternate Path or Channel

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-288CWE-287

Related Identifiers

CVE-2026-5557

Affected Products

Pi-Mono

CVE-2026-5557

Weakness Enumeration

Related Identifiers

Affected Products

References · 8