CVE-2026-30968
Published: 10 March 2026
Summary
CVE-2026-30968 is a critical-severity Missing Authorization (CWE-862) vulnerability in Coralos Coral Server. Its CVSS base score is 9.8 (Critical).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 17.4th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 AC-3 (Access Enforcement) and SC-23 (Session Authenticity).
Threat & Defense at a Glance
Threat & Defense Details
Mitigating Controls (NIST 800-53 r5)AI
Directly requires enforcement of approved authorizations for access to the SSE endpoint, addressing the missing validation of legitimate session participants.
Mandates verification of each communication session and rejection of unverifiable ones, preventing unauthorized connections to the SSE endpoint.
Enforces least privilege to restrict actions of connecting agents to only those necessary for legitimate session participation, mitigating unauthorized injection or observation.
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Missing authorization (CWE-862) on the network-accessible SSE endpoint directly enables remote exploitation of a public-facing application without authentication, matching T1190 for initial access via the described unauthorized session injection or traffic observation.
NVD Description
Coral Server is open collaboration infrastructure that enables communication, coordination, trust and payments for The Internet of Agents. Prior to 1.1.0, the SSE endpoint (/sse/v1/...) in Coral Server did not strongly validate that a connecting agent was a legitimate participant…
more
in the session. This could theoretically allow unauthorized message injection or observation. This vulnerability is fixed in 1.1.0.
Deeper analysisAI
CVE-2026-30968 is a vulnerability in Coral Server, an open collaboration infrastructure that enables communication, coordination, trust, and payments for The Internet of Agents. In versions prior to 1.1.0, the SSE endpoint (/sse/v1/...) failed to strongly validate that a connecting agent was a legitimate participant in the session, as mapped to CWE-862 (Missing Authorization). The issue carries a CVSS 3.1 base score of 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H), indicating critical severity due to its network accessibility and high impacts on confidentiality, integrity, and availability.
Attackers require no privileges, authentication, or user interaction to exploit this over the network with low complexity. Successful exploitation could theoretically enable unauthorized message injection into sessions or observation of session traffic, potentially compromising the integrity and privacy of agent communications.
The vulnerability is addressed in Coral Server version 1.1.0. Security practitioners should upgrade to this release for mitigation. Additional details are available in the GitHub security advisory at https://github.com/Coral-Protocol/coral-server/security/advisories/GHSA-2rj5-3pgm-xqw9 and the release notes at https://github.com/Coral-Protocol/coral-server/releases/tag/v1.1.0.
Details
- CWE(s)