{“lastseen”:””,”description”:”SOCFortress CoPilot focuses on providing a single pane of glass for all your security operations needs. Prior to 0.1.57, SOCFortress CoPilot ships a hardcoded JWT signing secret as a fallback value in backend\/app\/auth\/utils.py:28 and ships it verbatim in .env.example. Any deployment where JWT_SECRET is not explicitly set \u2014 including the default Docker Compose setup \u2014 signs all authentication tokens with this publicly known value. An unauthenticated attacker can forge arbitrary admin-scoped JWTs and gain full control of the application and every security tool it manages without any credentials. This vulnerability is fixed in 0.1.57.”,”published”:”2026-05-11T18:39:28.664Z”,”modified”:”2026-05-11T18:39:28.664Z”,”type”:”cve”,”title”:”SOCFortress CoPilot: Hardcoded JWT secret allows unauthenticated full admin compromise and lateral movement into all integrated SOC tools”,”source”:”GitHub_M”,”references”:”https:\/\/github.com\/socfortress\/CoPilot\/security\/advisories\/GHSA-4gxj-hw3c-3x2x\\nhttps:\/\/github.com\/socfortress\/CoPilot\/pull\/814\\nhttps:\/\/github.com\/socfortress\/CoPilot\/commit\/4640511a0cf2e7b144a71375b5b349a8318cb186″,”id”:”CVE-2026-42869″,”bulletinFamily”:””,”cwe”:[“CWE-287″,”CWE-522″,”CWE-798″],”cvelist”:null,”sourceData”:”socfortress CoPilot \\u003c 0.1.57″,”sourceHref”:””,”cvss”:{“score”:10,”severity”:”CRITICAL”,”vector”:”CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:N\/S:C\/C:H\/I:H\/A:H”,”version”:”3.1″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:””,”category_name”:”CVE”,”post_link”:””,”product”:”CoPilot”,”version”:”\\u003c 0.1.57″,”vendor”:”socfortress”,”ai_description”:”Unauthenticated attacker can forge arbitrary admin-scoped JWTs and gain full control of the application”,”ai_severity”:”Critical”,”ai_vendor”:”SOCFortress”,”ai_product”:”CoPilot”,”ai_version”:”\\u003c 0.1.57″,”ai_score”:10}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:””,”description”:”SOCFortress CoPilot focuses on providing a single pane of glass for all your security operations needs. Prior to 0.1.57, SOCFortress CoPilot ships a hardcoded JWT…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[9,6,8,36,12,13,7,11,5],"class_list":["post-53099","post","type-post","status-publish","format-standard","hentry","category-category_cve","tag-critical","tag-cve","tag-cvss","tag-cvss-100","tag-exploit","tag-news","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n