CVE-2026-42177

Name of the Vulnerable Software and Affected Versions linux-entra-sso versions prior to 1.8.1

Description The browser plugin for Linux used for SSO on Microsoft Entra ID contains an issue in the Chrome adapter where a declarativeNetRequest rule uses a urlFilter that performs substring matching against the full request URL. Because the rule lacks a proper anchor, a main-frame navigation to a URL containing "https://login.microsoftonline.com/" in its path can trigger the modifyHeaders action. This causes the browser to attach the Entra ID Primary Refresh Token (PRT) cookie to requests sent to an attacker-controlled host, provided the extension has broad host permissions. This occurs because the Chrome adapter lacks the startsWith() check implemented in the Firefox adapter.

Recommendations Update to version 1.8.1.