CNNVD-202602-1482 Information

CNNVD ID

CNNVD-202602-1482

Related CVE

CVE-2026-25577

• CNNVD Published: 2026-02-10

Description (Chinese)

Emmett-Core是Emmett开源的一个Emmett框架核心库。 Emmett-Core 1.3.11之前版本存在安全漏洞，该漏洞源于解析畸形Cookie标头时未处理CookieError异常，可能导致拒绝服务。

Description (English)

Emmett-Core is a core Emmett framework library of Emmett open sources. The previous version of Emmett-Core 1.3.11 had a security loophole, which stemmed from the failure to deal with Cookie Error anomalies when deconstructing the deformed Cookie marker, which could lead to the denial of services.

Vulnerability Type

其他

Affected Vendor

Emmett

Published

2026-02-10

Last Modified

2026-02-24

References

https://github.com/emmett-framework/core/commit/9557ea23a27cbadf7774d8bca6bbe4b54fa8a3ec https://github.com/emmett-framework/core/security/advisories/GHSA-x6cr-mq53-cc76 https://access.redhat.com/security/cve/cve-2026-25577

Patch

https://github.com/emmett-framework/core/tags