B3NCLOUD ARTICLE INTELLIGENCE

ARTICLEVIEW

Zurück zu News
nvd.nist.gov
RISK: Mittel (4.0)

[Medium] CVE-2026-43972 – Origin Validation Error vulnerability in ninenines gun (gun_http2 module) allows...

Medium CVE-2026-43972 Origin Validation Error vulnerability in ninenines gun (gun_http2 module) allows cross-origin cookie injection via unvalidated HTTP/2 PUSH_PROMISE authority. In gun_http2:push_promise_frame/7, the :authority pseudo-header from an incoming PUSH_PROMISE frame is stored verbatim...

#Sicherheitslücke
Original-Artikel öffnen Zurück zur Übersicht

VERWANDTEARTIKEL

Check Point VPN 0-day Vulnerability Exploited in the Wild to Deploy Ransomware

2026-06-08 Kritisch

CVE-2026-25555 - OpenBullet2 0.3.2 Authentication Bypass via X-Api-Key Header

2026-06-08 Mittel

CVE-2026-25559 - OpenBullet2 0.3.2 Path Traversal via Wordlist Endpoint

2026-06-08 Mittel

CVE-2026-25856 - OpenBullet2 0.3.2 Authenticated RCE via Job Configuration Interface

2026-06-08 Mittel

CVE-2026-25855 - OpenBullet2 0.3.2 Authenticated RCE via FileProxySource Script Upload

2026-06-08 Mittel

CVE-2026-49755 - Decompression bomb DoS in Req via auto-decoded archive and compressed response bodies

2026-06-08 Mittel