Improper Handling of Case Sensitivity vulnerability in Drupal OpenID Connect / OAuth client allows Privilege Escalation.This issue affects OpenID Connect / OAuth client: from 0.0.0 before 1.5.0.

Description

Affected Products

Vendor	Product	Versions
Drupal	OpenID Connect OAuth client	1.4.x

References

https://www.drupal.org/sa-contrib-2026-027

Related News (1 articles)

Tier C

VulDB2h ago

CVE-2026-3532 | OpenID Connect OAuth client up to 1.4.x on Drupal case sensitivity (sa-contrib-2026-027)

→ No new info (linked only)

CISA KEV❌ No

Actively exploited❌ No

CWECWE-178

Published3/26/2026

Last enriched19m agov2

Trending Score20

Source articles1

Independent1

Info Completeness8/14

Missing: cvss, epss, kev, exploit, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Pin to Dashboard

Verification

State: verified

Confidence: 100%

Version History

Last enriched 19m ago

v2Tier C19m ago

Updated vendor and product information, marked severity as CRITICAL, and specified affected versions as 1.4.x with a patch available in version 1.5.0.

vendorproductaffectedVersionspatchAvailable

via VulDB

v11h ago

Initial creation