Cyber Posture

CVE-2026-41070

Critical

Published: 08 May 2026

Published
08 May 2026
Modified
08 May 2026
KEV Added
Patch
CVSS Score 10.0 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N
EPSS Score 0.0004 13.2th percentile
Risk Priority 20 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2026-41070 is a critical-severity Improper Authentication (CWE-287) vulnerability. Its CVSS base score is 10.0 (Critical).

Operationally, ranked at the 13.2th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

Threat & Defense Details

Likely Mitigating ControlsAI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

AC-9 Previous Logon Notification
addresses: CWE-287

Detects unauthorized successful logons resulting from improper authentication implementations.

AT-1 Policy and Procedures
addresses: CWE-287

Documented procedures ensure personnel are trained on authentication mechanisms, tangibly lowering the risk of improper authentication being exploited.

AT-2 Literacy Training and Awareness
addresses: CWE-287

Security awareness training instructs users on secure authentication practices and avoiding credential compromise.

AT-3 Role-based Training
addresses: CWE-287

Training on authentication mechanisms and best practices decreases the occurrence of improper authentication.

AU-10 Non-repudiation
addresses: CWE-287

Non-repudiation requires strong authentication mechanisms to irrefutably attribute performed actions to specific individuals or processes.

AU-14 Session Audit
addresses: CWE-287

Session content review can reveal authentication bypasses or failures in session establishment.

AU-6 Audit Record Review, Analysis, and Reporting
addresses: CWE-287

Review of authentication-related audit records can detect improper authentication mechanisms or bypasses.

CA-2 Control Assessments
addresses: CWE-287

Assessments check authentication mechanisms for correct implementation and effectiveness, reducing successful authentication bypass attempts.

NVD Description

openvpn-auth-oauth2 is a plugin/management interface client for OpenVPN server to handle an OIDC based single sign-on (SSO) auth flows. From version 1.26.3 to before version 1.27.3, when openvpn-auth-oauth2 is deployed in the experimental plugin mode (shared library loaded by OpenVPN…

more

via the plugin directive), clients that do not support WebAuth/SSO (e.g., the openvpn CLI on Linux) are incorrectly admitted to the VPN despite being denied by the authentication logic. The default management-interface mode is not affected because it does not use the OpenVPN plugin return-code mechanism. This issue has been patched in version 1.27.3.

Deeper analysisAI

Automated synthesis unavailable for this CVE.

Details

CWE(s)
CWE-287

Affected Products

From
inferred from references and description; NVD did not file a CPE for this CVE

CVEs Like This One

CVE-2026-5570Shared CWE-287
CVE-2026-42560Shared CWE-287
CVE-2024-57490Shared CWE-287
CVE-2025-64717Shared CWE-287
CVE-2025-52395Shared CWE-287
CVE-2025-15484Shared CWE-287
CVE-2026-41571Shared CWE-287
CVE-2025-64423Shared CWE-287
CVE-2026-21891Shared CWE-287
CVE-2025-30361Shared CWE-287

References