PT-2026-38558 · Cisa · Manage.Get.Gov
Bn-Omran
·
Published
2026-05-07
·
Updated
2026-05-07
·
CVE-2026-43510
CVSS v3.1
7.6
High
| Vector | AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:L/A:H |
Name of the Vulnerable Software and Affected Versions
manage.get.gov versions prior to 1.176.0
Description
manage.get.gov is the .gov TLD registrar maintained by CISA. The platform allows an organization administrator to assign domain manager privileges for domains that are not already associated with another organization.
Recommendations
Update to version 1.176.0.
Fix
Incorrect Privilege Assignment
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Manage.Get.Gov