Web AI Firewall Vulnerability in Anubis Affects User Connection Security
CVE-2026-62314
5.8MEDIUM
What is CVE-2026-62314?
A vulnerability in the Anubis Web AI Firewall Utility allows HTTP clients to bypass security challenges due to improper validation of the client-controlled X-Original-URI header. This issue can lead to unauthorized access by matching allow rules configured for the firewall. The problem has been addressed in version 1.26.0-pre1, enhancing the validation process for incoming requests.
Affected Version(s)
anubis >= 1.22.0, < 1.26.0-pre1
