HarborGuardharborguardDatabase
Back to search
CRITICALCVE-2026-56265Published Modified CNA VulnCheck

CVE-2026-56265: Crawl4AI - Authentication Bypass via Hardcoded JWT Signing Key

Crawl4AI before 0.8.7 contains an authentication bypass vulnerability due to a hardcoded default JWT signing key in the Docker API server. Attackers who know the default key can forge valid authentication tokens for any user, bypassing authentication and gaining full access to protected functionality.

Metrics

CVSS v4.0
9.3
Severity
CRITICAL
Fixed in
0.8.7
Affected Products
1

Get notified

Email me when this CVE is updated: new fix versions, severity changes, or any record change.

HarborGuard Analysis

Synopsis

Authentication bypass in Crawl4AI's Docker API server allows unauthenticated remote attackers to forge valid JWT tokens using a hardcoded default signing key. Because the signing key is fixed in the source code, any attacker who knows it (or finds it in public repositories) can craft tokens for any user identity without supplying real credentials. Successful exploitation gives full access to all protected API functionality, including the ability to read crawled data, trigger crawl jobs, and modify server behavior. A patched-image rebuild at version 0.8.7 is available on HarborGuard for environments running an affected version.

HarborGuard Coverage

Detection

Detection of CVE-2026-56265 is available across every HarborGuard environment; the CVE is ingested from upstream advisory feeds within minutes of publication and matched against all customer images, including custom-built images derived from Crawl4AI base layers. Any image containing a Crawl4AI version below 0.8.7 is flagged automatically in both registry scans and CI pipeline checks.

Available
Triage

HarborGuard scores this finding at CVSS 9.3 (Critical) using the v4.0 vector from the upstream record, and applies per-environment compliance policy weighting to determine urgency and routing. Findings are routed to the appropriate team inbox within each customer organization based on image ownership and policy configuration.

Available
Patch

A patched-image rebuild pinned to Crawl4AI 0.8.7 becomes available on HarborGuard as soon as the upstream fix version is confirmed, which has already occurred for this CVE. For customers who opt into auto-remediation, HarborGuard rebuilds the affected image, runs a regression test suite, and opens a pull request against affected workloads automatically.

Available

Exploit Conditions

  • Network reachabilityRequired

    The vulnerable API server is exposed over the network, so an attacker must be able to reach it via HTTP/HTTPS to send forged JWT tokens.

  • AuthenticationNot required

    No valid credentials are needed; the attacker forges authentication tokens using the publicly known hardcoded signing key, bypassing the authentication layer entirely.

  • Victim interactionNot required

    The attack is fully server-side and requires no action from any user or administrator.

  • Attack complexityDetail

    Exploitation is reliable and condition-free; the attacker only needs to sign a JWT with the known default key, with no race conditions or environmental dependencies involved.

Blast Radius

  • Attacker reads any data accessible through the Crawl4AI API, including crawled page content and stored results, by impersonating arbitrary user identities.
  • Attacker submits and controls crawl jobs, directing the server to fetch attacker-chosen URLs and consume server resources.
  • Attacker modifies server-side configuration or job state through protected API endpoints, tampering with scheduled or in-progress crawl operations.
  • Attacker disrupts service availability by flooding or misconfiguring the crawl queue, crashing or degrading the API server for all users.

How HarborGuard Handles This

Available on HarborGuard: detection for CVE-2026-56265 is active across all scanning environments and will flag any image containing Crawl4AI below version 0.8.7. Because a fix exists at 0.8.7, a rebuilt image at that version is available for affected environments. For customers who opt into auto-remediation, HarborGuard triggers a rebuild, runs regression tests against the new image, and opens a pull request against affected workloads; for high and critical severity issues, the median time from CVE publication to a merged patch PR is around 90 minutes in environments with auto-remediation enabled. Where compliance policy does not permit auto-remediation, the finding is surfaced in the customer dashboard with remediation guidance pointing to the 0.8.7 upgrade. As an interim compensating control, customers can restrict network access to the Crawl4AI API server using container network policies to limit exposure while the upgrade is being reviewed and applied.

See how HarborGuard automates this

Fix available

0.8.7
Affected packages
  • Crawl4AI / Crawl4AI
    < 0.8.7 (from 0)
    Fixed in 0.8.7
CVSS Vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
References