CVE Catalog

CVE-2026-57951

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.25%

16th percentile — higher than 16% of all known CVEs

Summary

A vulnerability in Mythic before version 3.4.0.60 is caused by a broken Hasura permission filter on the payload_build_step table with an always-satisfied _or condition that bypasses operation-scoped access controls. Authenticated operators and spectators can query payload_build_step to read step_stdout, step_stderr, step_name, and step_description across all operations on the server.

Risk Assessment

The risk involves unauthorized access to sensitive build step output and metadata, potentially exposing confidential operational information and enabling further attacks.

Recommendation

Immediately upgrade Mythic to version 3.4.0.60 or later, which fixes the broken Hasura permission filter.

Original NVD description (English source)

Mythic before 3.4.0.60 contains a broken hasura permission filter on the payload_build_step table with an always-satisfied _or condition that bypasses operation-scoped access controls. Authenticated operators and spectators can query payload_build_step to read step_stdout, step_stderr, step_name, and step_description across all operations on the server.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS