CVE Catalog

CVE-2026-50194

HighCVSS 8.2
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.24%

15th percentile — higher than 15% of all known CVEs

Summary

Steeltoe is an open source project that provides libraries for building cloud-native applications. In versions 3.2.2 through 3.3.0 and 4.1.0, when management endpoints are configured to listen on an alternate port, the middleware uses the `Host` HTTP header instead of the actual network socket port, leading to potential security vulnerabilities.

Risk Assessment

Organizations may be exposed to unauthorized access to sensitive endpoints, which could result in data disclosure or unauthorized management of applications.

Recommendation

It is recommended to immediately upgrade to versions 3.4.0 or 4.2.0. If an upgrade is not possible, add ASP.NET Core authorization to all sensitive endpoints and configure the reverse proxy or load balancer to enforce the `Host` header value.

Original NVD description (English source)

Steeltoe is an open source project that provides a collection of libraries that helps users build cloud-native applications. When Steeltoe management endpoints versions 3.2.2 through 3.3.0 and 4.1.0 are configured to listen on an alternate port (`Management:Endpoints:Port` is configured), the middleware responsible for restricting access to the endpoints uses the `Host` HTTP header rather than the actual network socket port. Versions 3.4.0 and 4.2.0 patch the issue. If an immediate upgrade to a patched version is not possible, add explicit ASP.NET Core authorization (`RequireAuthorization`) to all sensitive actuator endpoints as a defense-in-depth measure independent of port isolation and/or configure the reverse proxy or load balancer to enforce the `Host` header value and prevent clients from setting an arbitrary port.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS