Back to search
CVE-2026-25660
Published: Apr 24, 2026
Modified: Apr 24, 2026
PUBLISHED
Description
CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang Static Analyzer and Clang Tidy. Authentication bypass occurs when the URL ends with Authentication with certain function calls. This bypass allows assigning arbitrary permission to any user existing in CodeChecker. This issue affects CodeChecker: through 6.27.3.
| Vendor | Product | Versions |
|---|---|---|
Ericsson | CodeChecker | affected 0 - <= 6.27.3 |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now