PT-2026-56079 · Coder · Coder
Published
2026-07-06
·
Updated
2026-07-07
·
CVE-2026-55435
CVSS v3.1
5.4
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Coder versions 2.30.0 through 2.32.6
Coder versions 2.33.0 through 2.33.7
Coder versions 2.34.0 through 2.34.1
Description
AI Bridge proxy endpoints authenticate via the
Server.IsAuthorized function in coderd/aibridgedserver. This process validates the key format, expiry, secret, and whether users are deleted or system users, but fails to check if an account is suspended. Since suspension does not automatically revoke existing API keys, unexpired tokens belonging to suspended users remain functional. This allows suspended users with long-lived tokens to continue calling AI Bridge LLM proxy endpoints, consuming paid provider resources and potentially invoking injected MCP tools if enabled.Recommendations
Update to version 2.32.7.
Update to version 2.33.8.
Update to version 2.34.2.
As a temporary workaround, delete the API keys of suspended users via the
DELETE /api/v2/users/{user}/keys endpoint.Fix
Incorrect Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Coder