๐Ÿ” CVE Alert

CVE-2026-55772

HIGH 8.8

CedarJava has a type confusion vulnerability

CVSS Score
8.8
EPSS Score
0.0%
EPSS Percentile
0th

CedarJava is an open source Java implementation of the Cedar policy language, used for fine-grained authorization decisions. In versions prior to 2.3.6, 3.4.1 and 4.9.0, under certain circumstances, improper input handling could allow Record-to-Entity type confusion across the Java-Rust FFI boundary. CedarJava sends authorization requests to the Rust cedar-policy evaluator as JSON. The JSON protocol reserves magic single-key object shapes (__entity and __extn) for entity references and extension values. When serializing a CedarMap, there is no validation preventing these reserved keys from being used. If an integrating service builds a CedarMap from caller-supplied key/value data (such as request headers, user-defined metadata, or resource tags), an actor who controls those keys could cause the Rust evaluator to interpret a record as an entity reference. This issue requires the integrating service to build a CedarMap where the an actor controls the keys, and a policy must reference that value in a when/unless clause. This vulnerability has been fixed in versions 2.3.6, 3.4.1, and 4.9.

CWE CWE-843
Vendor cedar-policy
Product cedar-java
Published Jul 13, 2026
Stay Ahead of the Next One

Get instant alerts for cedar-policy cedar-java

Be the first to know when new high vulnerabilities affecting cedar-policy cedar-java are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Affected Versions

cedar-policy / cedar-java
< 2.3.6 >= 3.1.2, < 3.4.1 >= 4.0.0, < 4.9.0

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
github.com: https://github.com/cedar-policy/cedar-java/security/advisories/GHSA-93g4-m6xv-cmvr