Severity:
CRITICAL RISK
(9.8)
Missing Authorization Enforcement (CWE-863) in changedetection.io Flask Routes
CVE-2026-35490
Published:
Apr 7, 2026
Status:
Undergoing Analysis
Summary
Affected Context
Exploit Preconditions
Why This Happens
Potential Impact
General Mitigation Guidance
How Teams Detect Issues Like This
Frequently Asked Questions
Source
NDV
