PT-2026-56079 · Coder · Coder

Published

2026-07-06

·

Updated

2026-07-07

·

CVE-2026-55435

CVSS v3.1

5.4

Medium

VectorAV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Name of the Vulnerable Software and Affected Versions Coder versions 2.30.0 through 2.32.6 Coder versions 2.33.0 through 2.33.7 Coder versions 2.34.0 through 2.34.1
Description AI Bridge proxy endpoints authenticate via the Server.IsAuthorized function in coderd/aibridgedserver. This process validates the key format, expiry, secret, and whether users are deleted or system users, but fails to check if an account is suspended. Since suspension does not automatically revoke existing API keys, unexpired tokens belonging to suspended users remain functional. This allows suspended users with long-lived tokens to continue calling AI Bridge LLM proxy endpoints, consuming paid provider resources and potentially invoking injected MCP tools if enabled.
Recommendations Update to version 2.32.7. Update to version 2.33.8. Update to version 2.34.2. As a temporary workaround, delete the API keys of suspended users via the DELETE /api/v2/users/{user}/keys endpoint.

Fix

Incorrect Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-55435
GHSA-WQXV-W64V-5WH6
GO-2026-5925

Affected Products

Coder