Skip to main content

Sentry EUVD-2026-7736

| CVE-2026-27197 CRITICAL
Improper Authentication (CWE-287)
2026-02-21 security-advisories@github.com GHSA-ggmg-cqg6-j45g
Authentication Bypass Sentry
9.1
CVSS 3.1 · GitHub Advisory
Share

Severity by source

GitHub Advisory PRIMARY
9.1 CRITICAL
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Primary rating from GitHub Advisory · only source for this CVE.

CVSS VectorGitHub Advisory

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
None

Lifecycle Timeline

3
Patch available
Apr 17, 2026 - 22:16 EUVD
Analysis Generated
Mar 12, 2026 - 22:04 vuln.today
CVE Published
Feb 21, 2026 - 05:17 nvd
CRITICAL 9.1

DescriptionGitHub Advisory

Sentry is a developer-first error tracking and performance monitoring tool. Versions 21.12.0 through 26.1.0 have a critical vulnerability in its SAML SSO implementation which allows an attacker to take over any user account by using a malicious SAML Identity Provider and another organization on the same Sentry instance. Self-hosted users are only at risk if the following criteria is met: ore than one organizations are configured (SENTRY_SINGLE_ORGANIZATION = True), or malicious user has existing access and permissions to modify SSO settings for another organization in a multo-organization instance. This issue has been fixed in version 26.2.0. To workaround this issue, implement user account-based two-factor authentication to prevent an attacker from being able to complete authentication with a victim's user account. Organization administrators cannot do this on a user's behalf, this requires individual users to ensure 2FA has been enabled for their account.

AnalysisAI

SAML authentication bypass in Sentry 21.12.0 through 26.1.0.

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts
Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Setup malicious SAML Identity Provider
Exploit
Register second organization on target Sentry instance
Execution
Craft forged SAML assertion
Impact
Attacker assumes victim user identity across organizations
Sign in to reveal

Vulnerability AssessmentAI

Exploitation Multi-organization Sentry deployment with SAML SSO enabled (SENTRY_SINGLE_ORGANIZATION setting not True). … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment CVSS 9.1. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario Bypass SAML authentication to access error tracking data.
Remediation Update Sentry. Detailed patch versions, workarounds, and compensating controls in full report.
Sign in to read full assessment

Recommended ActionAI

Within 24 hours: inventory all Sentry deployments (self-hosted and SaaS), identify critical instances, and enable enhanced monitoring for suspicious access patterns. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

EUVD-2026-7736 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy