Vulnerability DatabaseCVE-2026-32113

CVE-2026-32113:
NixOS vulnerability analysis and mitigation

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, the enter action in StaticController reads the sso_destination_url cookie and redirects to it with allow_other_host: true without validating the destination URL. While this cookie is normally set during legitimate DiscourseConnect Provider flows with cryptographically validated SSO payloads, cookies are client-controlled and can be set by attackers. This issue has been patched in versions 2026.1.3, 2026.2.2, and 2026.3.0.

Source: NVD

View vulnerable instances

Not a customer? See how Wiz maps CVEs like this one to real cloud attack paths.

Watch 12-min demo

5.1

Score

Published March 31, 2026

Severity MEDIUM

CNA Score 5.1

Affected Technologies

NixOS
Discourse

Has Public Exploit No

Has CISA KEV Exploit No

CISA KEV Release Date N/A

CISA KEV Due Date N/A

Exploitation Probability Percentile (EPSS) 14.4

Exploitation Probability (EPSS) N/A

Affected packages and libraries

cpe:2.3:a:discourse:discourse
discourse

Sources

Nix
- Nix Severity MEDIUMHas FixAdded at: Apr 06, 2026
VulnCheck NVD++
- Linux Severity MEDIUMHas FixAdded at: Apr 02, 2026
NVD
- Linux Severity MEDIUMHas FixAdded at: Apr 06, 2026

Get a CVE risk assessment

Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.

Request assessment

Related NixOS vulnerabilities:

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2026-4370	CRITICAL	10	NixOS	juju	No	Yes	Apr 01, 2026
CVE-2026-34235	MEDIUM	6.9	NixOS	pjsip	No	Yes	Mar 31, 2026
CVE-2026-34730	MEDIUM	5.5	Python	copier	No	Yes	Apr 02, 2026
CVE-2026-32113	MEDIUM	5.1	NixOS	cpe:2.3:a:discourse:discourse	No	Yes	Mar 31, 2026
CVE-2026-34726	MEDIUM	4.4	Python	copier	No	Yes	Apr 02, 2026