How is CVE-2026-45108 exploited?

Network reachability (required): The DAG flow endpoint must be reachable over the network, so the attacker must be able to reach the Himmelblau service across the network. Authentication (required): The attacker must hold a valid low-privilege account in the same Entra ID domain; unauthenticated access is not sufficient to trigger the bypass. Victim interaction (not-required): No action from the target user or any other party is needed; the attacker operates entirely through their own session. Attack complexity (info): The attack has high complexity, meaning the attacker may need to satisfy specific environmental or timing conditions, such as the target account existing locally and the DAG flow being active, before the bypass succeeds reliably.

What is the impact of CVE-2026-45108?

The attacker gains a local Unix session authenticated as the target user, reading any files, secrets, or credentials stored in that user's home directory and process environment. The attacker can write or modify files owned by the target user, including shell configuration files, SSH authorized keys, and application data. Scope is marked Changed in the CVSS vector, meaning the attacker can leverage the hijacked session to pivot into resources or services that trust the target user's local identity, beyond the original Himmelblau component. The target service experiences only low availability impact, so the host itself is unlikely to crash, but the target user may lose sole control of their session and associated resources.

Back to search

HIGHCVE-2026-45108Published 2026-05-27Modified 2026-05-28CNA GitHub_M

CVE-2026-45108: Himmelblau: Authentication Bypass via Cross-User Local Session Impersonation in Device Authorization Grant (DAG) Flow

Q: Is CVE-2026-45108 patched?

Because no upstream fix versions have been published yet, HarborGuard re-evaluates this advisory on every ingest cycle and will make a patched-image rebuild available automatically the moment a fix is released upstream. For customers who opt into auto-remediation, the rebuild, regression-test run, and PR against affected workloads will be triggered without manual intervention once the fix appears.

Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. From 2.0.0 to before 3.1.5 and 2.3.11, Himmelblau contained an authentication bypass vulnerability in the Device Authorization Grant (DAG) flow that allowed a user within the same Entra ID domain to obtain a local Unix session as another user by providing their own valid credentials. The vulnerability existed in the token_validate function, which validated domain aliases for legitimate multi-domain scenarios but failed to verify that the local part (username) of the authenticated user's UPN matched the requested account username. The function only compared domains, not the complete usernames. This vulnerability is fixed in 3.1.5 and 2.3.11.

HarborGuard Analysis

HarborGuard analysis

Synopsis

An authentication bypass vulnerability in Himmelblau, an interoperability suite for Microsoft Azure Entra ID and Intune, allows an attacker with a valid low-privilege account in the same Entra ID domain to obtain a local Unix session as a different user. The flaw lives in the token_validate function of the Device Authorization Grant flow, which checked only the domain portion of a user principal name (UPN) and ignored the local username, letting a legitimate user present their own valid credentials to claim another user's session. Successful exploitation gives the attacker full access to the target account's local session, including its files, credentials, and privilege context. HarborGuard tracks this advisory for patch availability and will make a patched-image rebuild available the moment upstream ships a fix.

HarborGuard Coverage

Detection

Detection of CVE-2026-45108 is available across every HarborGuard environment; the CVE is ingested from upstream advisory feeds within minutes of publication and matched against all customer images, including custom-built images that bundle Himmelblau. Any image running an affected release (>=2.0.0 and <2.3.11, or >=3.0.0-alpha and <3.1.5) is flagged automatically in both registry scans and pipeline checks.

Available

Triage

Triage is available with a CVSS v3.1 base score of 8.4 (HIGH), surfaced alongside per-environment compliance policy weighting so that teams with stricter Unix identity controls see this issue prioritized accordingly. Findings are routed to the appropriate inbox within each customer organization based on image ownership and policy configuration.

Available

Patch

Because no upstream fix versions have been published yet, HarborGuard re-evaluates this advisory on every ingest cycle and will make a patched-image rebuild available automatically the moment a fix is released upstream. For customers who opt into auto-remediation, the rebuild, regression-test run, and PR against affected workloads will be triggered without manual intervention once the fix appears.

Pending upstream

Exploit Conditions

Network reachabilityRequired
The DAG flow endpoint must be reachable over the network, so the attacker must be able to reach the Himmelblau service across the network.
AuthenticationRequired
The attacker must hold a valid low-privilege account in the same Entra ID domain; unauthenticated access is not sufficient to trigger the bypass.
Victim interactionNot required
No action from the target user or any other party is needed; the attacker operates entirely through their own session.
Attack complexityDetail
The attack has high complexity, meaning the attacker may need to satisfy specific environmental or timing conditions, such as the target account existing locally and the DAG flow being active, before the bypass succeeds reliably.

Blast Radius

The attacker gains a local Unix session authenticated as the target user, reading any files, secrets, or credentials stored in that user's home directory and process environment.
The attacker can write or modify files owned by the target user, including shell configuration files, SSH authorized keys, and application data.
Scope is marked Changed in the CVSS vector, meaning the attacker can leverage the hijacked session to pivot into resources or services that trust the target user's local identity, beyond the original Himmelblau component.
The target service experiences only low availability impact, so the host itself is unlikely to crash, but the target user may lose sole control of their session and associated resources.

How HarborGuard Handles This

Available on HarborGuard: because no upstream fix has been published for CVE-2026-45108, HarborGuard monitors the advisory on every ingest cycle and will make a patched-image rebuild available automatically as soon as a fix version appears in the himmelblau-idm upstream feed. For customers who opt into auto-remediation, the rebuild plus regression-test run and a PR against affected workloads will be triggered without manual intervention at that point. In the interim, compensating controls worth considering include network-policy isolation to restrict which principals can reach the Himmelblau DAG endpoint, egress filtering to limit lateral movement from a compromised session, and auditing local PAM or NSS logs for unexpected cross-user session creation events. Where compliance policy permits, HarborGuard can surface these compensating-control recommendations directly inside the finding card for affected images.

See how HarborGuard automates this

CVSS v3.1: 8.4
Severity: HIGH
Fixed in: —
Affected Products: 1

Affected packages

himmelblau-idm / himmelblau
>= 2.0.0, < 2.3.11 · >= 3.0.0-alpha, < 3.1.5

CVSS Vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L

References

https://github.com/himmelblau-idm/himmelblau/security/advisories/GHSA-pmxh-j4r6-88mv