What is the CVSS score of EUVD-2026-29116?

EUVD-2026-29116 has a CVSS 3.1 base score of 8.1 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N. EPSS exploitation probability: 0.0%.

Which versions of HireFlow are affected by EUVD-2026-29116?

HireFlow v1.2 contains a broken object-level authorization vulnerability that allows any authenticated user to access all candidate profiles and interview notes through direct enumeration of object…

HireFlow EUVD-2026-29116

| CVE-2026-38568 HIGH

Authorization Bypass Through User-Controlled Key (CWE-639)

2026-05-11 mitre

GHSA-6fpq-hhv8-hc9f

Authentication Bypass Privilege Escalation

8.1

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

None

Lifecycle Timeline

Analysis Generated

May 11, 2026 - 19:45 vuln.today

CVSS changed

May 11, 2026 - 19:22 NVD

8.1 (HIGH)

CVE Published

May 11, 2026 - 00:00 nvd

UNKNOWN (no severity yet)

CVE Published

May 11, 2026 - 00:00 nvd

HIGH 8.1

DescriptionNVD

HireFlow v1.2 is vulnerable to Incorrect Access Control. The application does not enforce object-level authorization on the /candidate/<id> and /interview/<id> endpoints. The route handlers retrieve records by the user-supplied ID without verifying that the requesting user is the owner or has an authorized role. Any authenticated user can access any other user's candidate profiles and interview notes by iterating the integer ID in the URL path, constituting a horizontal privilege escalation and full data breach of all records in the system.

AnalysisAI

Broken object-level authorization in HireFlow v1.2 exposes all candidate profiles and interview notes to any authenticated user via direct object reference. Attackers with valid low-privilege credentials can enumerate integer IDs in /candidate/<id> and /interview/<id> endpoints to access the entire database, enabling full horizontal privilege escalation and complete data breach. …

RemediationAI

Within 24 hours: Implement network-level access controls restricting /candidate/ and /interview/ endpoints to authenticated users with documented business need; enable detailed logging of all requests to these endpoints. Within 7 days: Contact HireFlow vendor for emergency security update or request timeline for patched version; conduct forensic audit of access logs for evidence of exploitation. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

EUVD-2026-29116 vulnerability details – vuln.today

Back