CVE-2026-10622: CWE-306 Missing Authentication for Critical Function in Collibra Collibra Platform (on-prem)
Improper Authentication in REST API in Collibra Agent, allows a remote unauthenticated attacker to access privileged functionality via exposed '/rest/* endpoints.
AI Analysis
Technical Summary
This vulnerability involves missing or improper authentication controls in the REST API of the Collibra Agent component of the Collibra Platform (on-premises) version 2026.03. Specifically, unauthenticated remote attackers can access privileged functions through exposed '/rest/*' endpoints, violating CWE-306 (Missing Authentication for Critical Function) and CWE-287 (Improper Authentication). No patch or official fix has been documented yet, and no CVSS score is assigned.
Potential Impact
The impact is that an unauthenticated remote attacker could gain unauthorized access to privileged functionality within the Collibra Platform on-premises environment. This could lead to unauthorized actions or data exposure depending on the privileged functions accessible via the REST API. However, no known exploits have been reported in the wild so far.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory at https://kb.cert.org/vuls/id/873170 for current remediation guidance. Until an official fix is available, restrict network access to the affected REST API endpoints to trusted users only and monitor for suspicious activity related to these endpoints.
CVE-2026-10622: CWE-306 Missing Authentication for Critical Function in Collibra Collibra Platform (on-prem)
Description
Improper Authentication in REST API in Collibra Agent, allows a remote unauthenticated attacker to access privileged functionality via exposed '/rest/* endpoints.
CVSS v3.1
Score 8.2high
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability involves missing or improper authentication controls in the REST API of the Collibra Agent component of the Collibra Platform (on-premises) version 2026.03. Specifically, unauthenticated remote attackers can access privileged functions through exposed '/rest/*' endpoints, violating CWE-306 (Missing Authentication for Critical Function) and CWE-287 (Improper Authentication). No patch or official fix has been documented yet, and no CVSS score is assigned.
Potential Impact
The impact is that an unauthenticated remote attacker could gain unauthorized access to privileged functionality within the Collibra Platform on-premises environment. This could lead to unauthorized actions or data exposure depending on the privileged functions accessible via the REST API. However, no known exploits have been reported in the wild so far.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory at https://kb.cert.org/vuls/id/873170 for current remediation guidance. Until an official fix is available, restrict network access to the affected REST API endpoints to trusted users only and monitor for suspicious activity related to these endpoints.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- certcc
- Date Reserved
- 2026-06-02T13:59:47.508Z
- Cvss Version
- null
- State
- PUBLISHED
- Remediation Level
- null
- Vendor Advisory Urls
- [{"url":"https://kb.cert.org/vuls/id/873170","vendor":"CERT"}]
Threat ID: 6a1ee648e29bf47b50d3a747
Added to database: 6/2/2026, 2:18:48 PM
Last enriched: 6/2/2026, 2:49:43 PM
Last updated: 6/3/2026, 5:03:46 AM
Views: 5
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.