CVE-2026-40799: CWE-288 Authentication Bypass Using an Alternate Path or Channel in RelyWP Simple Cloudflare Turnstile
Unauthenticated Broken Authentication in Simple Cloudflare Turnstile <= 1.38.0 versions.
AI Analysis
Technical Summary
This vulnerability (CVE-2026-40799) in Simple Cloudflare Turnstile (<= 1.38.0) involves broken authentication due to an alternate path or channel that allows unauthenticated users to bypass authentication controls. It is classified under CWE-288 (Authentication Bypass Using an Alternate Path or Channel). The CVSS 3.1 base score is 5.8, indicating a medium severity impact primarily on integrity. The product is cloud-hosted, and the vendor manages remediation server-side. No active exploitation has been reported.
Potential Impact
An attacker can bypass authentication without valid credentials, potentially allowing unauthorized actions that affect the integrity of the system. There is no impact on confidentiality or availability reported. The vulnerability could lead to unauthorized changes or actions within the affected service.
Mitigation Recommendations
Since this is a cloud-hosted service, the vendor manages remediation and typically applies patches server-side. A patch is available, so users should verify with the vendor advisory that their service instance is updated. No additional user action is required unless otherwise instructed by the vendor.
CVE-2026-40799: CWE-288 Authentication Bypass Using an Alternate Path or Channel in RelyWP Simple Cloudflare Turnstile
Description
Unauthenticated Broken Authentication in Simple Cloudflare Turnstile <= 1.38.0 versions.
CVSS v3.1
Score 5.8medium
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability (CVE-2026-40799) in Simple Cloudflare Turnstile (<= 1.38.0) involves broken authentication due to an alternate path or channel that allows unauthenticated users to bypass authentication controls. It is classified under CWE-288 (Authentication Bypass Using an Alternate Path or Channel). The CVSS 3.1 base score is 5.8, indicating a medium severity impact primarily on integrity. The product is cloud-hosted, and the vendor manages remediation server-side. No active exploitation has been reported.
Potential Impact
An attacker can bypass authentication without valid credentials, potentially allowing unauthorized actions that affect the integrity of the system. There is no impact on confidentiality or availability reported. The vulnerability could lead to unauthorized changes or actions within the affected service.
Mitigation Recommendations
Since this is a cloud-hosted service, the vendor manages remediation and typically applies patches server-side. A patch is available, so users should verify with the vendor advisory that their service instance is updated. No additional user action is required unless otherwise instructed by the vendor.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- Patchstack
- Date Reserved
- 2026-04-15T09:20:46.957Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
- Is Cloud Service
- true
Threat ID: 6a3061510b89be688893d334
Added to database: 6/15/2026, 8:32:17 PM
Last enriched: 6/15/2026, 9:31:28 PM
Last updated: 6/16/2026, 4:42:14 AM
Views: 5
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.