Vulnerabilidades em ninenines
9 resultadosCVE-2026-43970HIGHDecompression Bomb in cow_spdy:inflate/2 Allows Memory Exhaustion via Crafted SPDY FrameEPSS 0.5%CVE-2026-7790HIGHUnbounded chunk-size hex digits in cowlib cause quadratic CPU and memory DoSEPSS 0.4%CVE-2026-8466HIGHUnbounded buffer accumulation in multipart header parsing causes denial of service in cowboyEPSS 0.4%CVE-2026-43973HIGHgun HTTP/1.1 response buffer has no size limit allowing server-controlled memory exhaustionEPSS 0.4%CVE-2026-43974HIGHgun HTTP/1.1 client accepts unsolicited 101 Switching Protocols response allowing server-driven protocol hijack and OOMEPSS 0.4%CVE-2026-43966MEDIUMHTTP Response Splitting via Non-VCHAR Bytes in cow_http_struct_hd:escape_string/2EPSS 0.3%CVE-2026-43968MEDIUMCR Injection in SSE Encoder Enables Event Splitting via cow_sse:event/1EPSS 0.2%CVE-2026-43972MEDIUMgun HTTP/2 PUSH_PROMISE authority not validated against connection origin allows cross-origin cookie injectionEPSS 0.2%CVE-2026-43969LOWCookie Request Header Injection via Unvalidated Encoder in cow_cookie:cookie/1EPSS 0.1%