CVE-2026-10622 | THREATINT

Description

Improper Authentication in REST API in Collibra Agent, allows a remote unauthenticated attacker to access privileged functionality via exposed '/rest/* endpoints.

PUBLISHED Reserved 2026-06-02 | Published 2026-06-02 | Updated 2026-06-02 | Assigner certcc

Problem types

CWE-306 Missing Authentication for Critical Function

CWE-287 Improper Authentication

Product status

2026.03 (custom) before 2026.03.356

affected

2025.10 (custom) before 2025.10.399

affected

2026.04 (custom) before 2026.04.5

affected

2026.03 (custom) before 2026.03.4

affected

2026.02 (custom) before 2026.02.6

affected

2025.11 (custom) before 2025.11.7

affected

2025.10 (custom) before 2025.10.9

affected

References

www.collibra.com/

kb.cert.org/vuls/id/873170

cve.org (CVE-2026-10622)

nvd.nist.gov (CVE-2026-10622)

Download JSON