CVE-2026-46354 PUBLISHED

Coder: PKCS#7 signature bypass in Azure instance identity allows unauthenticated agent token theft

Assigner: GitHub_M
Reserved: 13.05.2026 Published: 07.07.2026 Updated: 08.07.2026

Coder allows organizations to provision remote development environments via Terraform. In versions prior tp 2.24.5, 2.29.13, 2.30.8, 2.31.12, 2.32.2, and 2.33.3, azureidentity.Validate() verifies that the PKCS#7 signer certificate chains to a trusted Azure CA but never verifies the PKCS#7 signature itself. An attacker can embed a legitimate Azure certificate alongside arbitrary content e.g. {"vmId":"<target>"} and the forged vmId will be accepted returning the victim workspace agent's session token. No authentication is required. The attacker only needs to know a target VM's vmId which is a UUIDv4. That's a practical limitation which would typically require prior access to be exploited. Versions 2.24.5, 2.29.13, 2.30.8, 2.31.12, 2.32.2, and 2.33.3 patch the issue. As a workaround, reconfigure any Azure templates to use token authentication rather than azure-instance-identity.

Metrics

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
CVSS Score: 9.1

Product Status

Vendor coder
Product coder
Versions
  • Version >= 2.33.0-rc.0, < 2.33.3 is affected
  • Version >= 2.32.0-rc.0, < 2.32.2 is affected
  • Version >= 2.31.0, < 2.31.12 is affected
  • Version >= 2.30.0, < 2.30.8 is affected
  • Version >= 2.29.0, < 2.29.13 is affected
  • Version < 2.24.5 is affected

References

Problem Types

  • CWE-347: Improper Verification of Cryptographic Signature CWE