CVE ID :CVE-2026-5067 Published : 2026年6月9日 06:16 | 58 分钟 ago Description :A remote, unauthenticated attacker can trigger memory corruption in Zephyr's HTTP server WebSocket upgrade path by sending a crafted Sec-WebSocket-Key header. The HTTP/1 header parser copies the header into a...

#Sicherheitslücke

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

CVE-2026-5067 - Out-of-bounds read/write in HTTP WebSocket upgrade via non-null-terminated Sec-WebSocket-Key

VERWANDTEARTIKEL

Check Point warnt: Angreifer umgehen VPN-Authentifizierung

CVE-2026-23111: Linux nf_tables Flaw Enables Root Exploits

LiteLLM Flaw CVE-2026-42271 Exploited in the Wild, Chains to Unauthenticated RCE

CVE-2026-11572 - degit Command Injection

CVE-2026-41539 - QTS, QuTS hero

Google Patches 5th Chrome Zero-Day Exploited in 2026