CVE ID :CVE-2026-13311 Published : June 25, 2026, 4:48 a.m. | 2 hours, 22 minutes ago Description :shell-quote prior to 1.8.5 finalizes parsed tokens in parse() using Array.prototype.concat as a reduce accumulator, which reallocates and copies the entire growing array on every iteration. As a...

#Sicherheitslücke #DDoS

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

CVE-2026-13311 - shell-quote parse() is quadratic in token count, enabling denial of service

VERWANDTEARTIKEL

CVE-2026-49269: Apple M1 GPUs geben Registerdaten zwischen Sandbox-Prozessen preis

Cordyceps: CI/CD-Schwachstellen gefährden GitHub-Repositories und Open-Source-Lieferketten

CVE-2026-12242 in AdRotate Banner Manager: PHP-Code-Injection bedroht über 20.000 WordPress-Installationen

Cisco Catalyst SD-WAN Zero-Day CVE-2026-20245 Exploited Months Before Disclosure

GIMP: Schwachstelle ermöglicht Codeausführung

CVE-2026-56274 in Flowise: Kritische Command-Injection gefährdet Self-Hosted-Installationen