VULNRABLE / Vulnerability / CVE-2026-48146
CVE-2026-48146
HIGH @budibase/server GHSA
CVSS Score
8
Severity
HIGH
EPSS
0%
Source
GHSA
Summary
Budibase: SSRF via OAuth2 Config Validation — Missing fetchWithBlacklist Protection
What this means
CVE-2026-48146 is a high-severity vulnerability affecting @budibase/server, rated CVSS 8. The EPSS model estimates a 0% probability of exploitation in the next 30 days. Published June 12, 2026.
View full advisory at GHSA →