CVE-2026-43510
Published: Thu, 07 May 2026 20:16
Summary
manage.get.gov is the .gov TLD registrar maintained by CISA. manage.get.gov allows an organization administrator to assign domain manager privileges for domains not already in another organization. Fi
Details
manage.get.gov is the .gov TLD registrar maintained by CISA. manage.get.gov allows an organization administrator to assign domain manager privileges for domains not already in another organization. Fixed in 1.176.0 on or around 2026-04-30.
Are YOU affected by CVE-2026-43510?
5-second check on your actual server. Reads /etc/os-release, uname -r, and dpkg-query; matches against the live USN + Debian Security Tracker feeds; tells you whether CVE-2026-43510 (and any other live CVE) applies. Anonymous, no signup.
curl https://mindsparkstack.com/scan.sh | bash
References
- https://github.com/cisagov/manage.get.gov/issues/4858
- https://github.com/cisagov/manage.get.gov/pull/4900
- https://github.com/cisagov/manage.get.gov/releases/tag/v1.176.0
- https://github.com/cisagov/manage.get.gov/security/advisories/GHSA-6wrg-x3j6-x464
- https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2026/va-26-121-01.json
- https://www.cve.org/CVERecord?id=CVE-2026-43510
StackPatch runs this match against YOUR installed packages every hour
Free 1-server / $99 lifetime founder seat (50 only) / $19+/mo monthly. Indie pricing.