CVE-2026-34905

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Answer.

This issue affects Apache Answer: through 2.0.0.

The unlisted question feature did not enforce access restrictions on direct API endpoints, allowing authenticated users to discover and access unlisted questions, their answers, comments, and revision history. Users are recommended to upgrade to version 2.0.1, which fixes the issue.

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2026-34905

Affected Products

Apache Answer

CVE-2026-34905

Weakness Enumeration

Related Identifiers

Affected Products

References · 2