News

Application security news, updated daily (if there is any news to share).

CVE-2026-27197: Critical Sentry SAML SSO issue can enable account takeover in some multi-organization deployments

CVE-2026-27197 is a critical SAML SSO flaw in self-hosted Sentry that can enable account takeover in multi-organization instances; fixed in 26.2.0.

CVE-2026-27134 in Strimzi 0.49.0–0.50.0 can trust every CA in a provided multi-CA chain, weakening mTLS authentication on Kafka listeners.

Loading news…