HarborGuardharborguardDatabase
Back to search
CRITICALCVE-2026-42849Published Modified CNA GitHub_M

CVE-2026-42849: authentik: Reflected XSS in SFE AutosubmitStage allows IDP account takeover

authentik is an open-source identity provider. Prior to versions 2025.12.5 and 2026.2.3, due to the implementation of stages in the SFE (Simple Flow Executor) in order to make the interface more compatible with legacy browsers, it was possible to use an XSS exploit in the AutosubmitStage. This issue has been patched in versions 2025.12.5 and 2026.2.3.

Metrics

CVSS v3.1
9.3
Severity
CRITICAL
Fixed in
Affected Products
1

Get notified

Email me when this CVE is updated: new fix versions, severity changes, or any record change.

HarborGuard Analysis

Synopsis

Reflected cross-site scripting (XSS) in authentik's Simple Flow Executor (SFE) AutosubmitStage allows a remote, unauthenticated attacker to inject and execute arbitrary JavaScript in a victim's browser by tricking them into following a crafted link. Because the vulnerability carries a Changed scope in its CVSS vector, the injected script runs in the context of the authentik identity provider origin, giving an attacker full access to the victim's authenticated session. Successful exploitation enables account takeover of the identity provider account, exposure of stored credentials and tokens, and unauthorized modification of identity data. HarborGuard tracks this advisory and will make a patched-image rebuild available the moment upstream fix versions are published.

HarborGuard Coverage

Detection

Detection of CVE-2026-42849 is available across every HarborGuard environment: the CVE is ingested from upstream advisory feeds within minutes of publication and matched against all customer images, including custom-built images that bundle authentik. Scans run continuously in both registry and CI/CD pipeline contexts, so newly pushed images are evaluated without delay.

Available
Triage

HarborGuard is capable of scoring this finding at CVSS 9.3 Critical and weighting it against each environment's compliance policy to determine urgency and routing. Triage results, including recommended owner assignment, are delivered to the appropriate inbox within each customer organization based on configured policy rules.

Available
Patch

Because no upstream fix versions have been published yet, HarborGuard re-checks this advisory on every ingest cycle and will make a patched-image rebuild available automatically the moment goauthentik ships a corrected release. For customers with auto-remediation enabled, the rebuild, regression-test run, and PR against affected workloads will be initiated without manual intervention as soon as a fix version becomes available.

Pending upstream

Exploit Conditions

  • Network reachabilityRequired

    The attacker delivers the malicious payload over the network by directing a victim to a crafted URL targeting the publicly reachable authentik SFE endpoint.

  • AuthenticationNot required

    No account or credentials are needed; the attacker exploits the AutosubmitStage before any authentication barrier is reached.

  • Victim interactionRequired

    The victim must follow a crafted link or otherwise load the malicious URL in their browser, making this a social-engineering-dependent attack.

  • Attack complexityDetail

    Exploitation is reliable and condition-free; no race conditions, memory layout knowledge, or special environmental state are required.

Blast Radius

  • Attacker executes arbitrary JavaScript in the victim's browser under the authentik identity provider origin, stealing session tokens and authentication cookies.
  • Hijacked session grants full control of the victim's IDP account, including the ability to modify linked applications, credentials, and group memberships.
  • Stored OAuth tokens and OpenID Connect grants accessible to the compromised session are exposed and can be exfiltrated.
  • Because authentik acts as an upstream identity provider, account takeover can cascade to every downstream application that trusts it for authentication.

How HarborGuard Handles This

Available on HarborGuard: continuous monitoring of this advisory is active, and detection of affected authentik images (versions prior to 2025.12.5 and 2026.2.3) is available across all customer environments. Because no upstream fix has been published, HarborGuard re-evaluates the advisory on every ingest cycle. The moment goauthentik releases a patched version, a rebuilt image will become available, and customers with auto-remediation enabled will receive a rebuild, automated regression run, and a PR opened against affected workloads automatically. In the interim, compensating controls worth considering include placing the authentik service behind a network policy that restricts direct user-facing exposure to trusted networks, adding egress filtering to limit what an injected script can reach, and reviewing whether the AutosubmitStage can be disabled or replaced with a non-legacy flow variant if your user base does not require legacy browser compatibility.

See how HarborGuard automates this
Affected packages
  • goauthentik / authentik
    < 2025.12.5 · < 2026.2.3
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N
References