Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
9.1
Unity Catalog Exposes Data to Unauthorized Access
CVE-2026-27478
Summary
A critical security flaw in Unity Catalog's token exchange endpoint allows attackers to access data without proper authentication. This could lead to unauthorized access to sensitive data and AI information. Update to the latest version of Unity Catalog to fix the issue.
Original title
Unity Catalog is an open, multi-modal Catalog for data and AI. In 0.4.0 and earlier, a critical authentication bypass vulnerability exists in the Unity Catalog token exchange endpoint (/api/1.0/uni...
Original description
Unity Catalog is an open, multi-modal Catalog for data and AI. In 0.4.0 and earlier, a critical authentication bypass vulnerability exists in the Unity Catalog token exchange endpoint (/api/1.0/unity-control/auth/tokens). The endpoint extracts the issuer (iss) claim from incoming JWTs and uses it to dynamically fetch the JWKS endpoint for signature validation without validating that the issuer is a trusted identity provider.
nvd CVSS3.1
9.1
Vulnerability type
CWE-290
CWE-346
CWE-1390
Published: 11 Mar 2026 · Updated: 14 Mar 2026 · First seen: 11 Mar 2026