CVE-2026-43886

Name of the Vulnerable Software and Affected Versions Outline versions 0.84.0 through 1.6.1

Description A logic error exists in the validateScope() function within the OAuthInterface. The function utilizes Array.some() to validate requested OAuth scopes, which results in the entire scope array being accepted if at least one scope is valid. This allows an attacker to smuggle a wildcard * scope by requesting scope=read *, effectively escalating a read-only OAuth token to full unrestricted API access, including write, delete, and admin operations.

Recommendations Update to version 1.7.0.