Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

CVE-2026-30805: Pandora FMS API Authentication Bypass

CVE-2026-30805

Summary

Pandora FMS versions 777 to 800 have a security flaw that allows unauthorized access to the API. This could lead to sensitive data being accessed or modified. Update to a fixed version of Pandora FMS to address this issue.

Original title

Insecure Default Initialization of Resource vulnerability allows Authentication Bypass via API access. This issue affects Pandora FMS: from 777 through 800

Original description

Insecure Default Initialization of Resource vulnerability allows Authentication Bypass via API access. This issue affects Pandora FMS: from 777 through 800

nvd CVSS4.0 9.1

Vulnerability type

CWE-1188

https://pandorafms.com/en/security/common-vulnerabilities-and-exposures/

Published: 12 May 2026 · Updated: 15 Jun 2026 · First seen: 12 May 2026