CVE Catalog

CVE-2026-40726

HighCVSS 8.2
Published: Updated: Translated: NVD NIST

Summary

Versions of Stripe up to 1.3.14 have an issue with unauthenticated access in the user registration process.

Risk Assessment

Organizations may be exposed to unauthorized access to user accounts, potentially leading to data leaks or unauthorized actions.

Recommendation

It is recommended to upgrade to the latest version of Stripe to mitigate this vulnerability.

Original NVD description (English source)

Unauthenticated Broken Access Control in User Registration Stripe <= 1.3.14 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS