A vulnerability, which was classified as problematic , was found in dani-garcia vaultwarden up to 1.35.4 . This vulnerability affects unknown code of the file /api/ciphers/purge . Such manipulation leads to incorrect authorization. This vulnerability is uniquely identified as CVE-2026-43913 . The attack can be launched remotely. No exploit exists. You should upgrade the affected component.