4 matches found
CVE-2026-26209 vulnerabilities
Vulnerabilities for packages: localstack, tritonserver-backend-vllm-cuda-13.0, py3-cbor2, tritonserver-backend-vllm-cuda-12.9, py3-vllm-cuda-12.4, vllm-openai-cuda-12.9...
Security update for python-cbor2 (important)
openSUSE Security Update: Security update for python-cbor2 Announcement ID: openSUSE-SU-2026:0095-1 Rating: important References: 1260367 Cross-References: CVE-2026-26209 CVSS scores: CVE-2026-26209 SUSE: 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N Affected Products:...
ai-box-lib (>=0.1.0 <=0.2.1), aligned-py (>=0.1.0 <=0.2.0a0) +80 more potentially affected by CVE-2026-26209 via cbor2 (>=5.0.1 <=5.8.0)
cbor2 PYPI version =5.0.1, =0.1.0, =0.1.0, =0.13.0, =0.5.5.post5, =0.5.5.post4, =0.2.0, =0.10.6, =0.7.1a0, =0.1.0, =2.0.1, =1.0.0, =0.0.1, =0.0.5 and more Source cves: CVE-2026-26209 Source advisory: SNYK:PYTHON-CBOR2-15762225...
CVE-2026-26209
cbor2 provides encoding and decoding for the Concise Binary Object Representation CBOR serialization format. Versions prior to 5.9.0 are vulnerable to a Denial of Service DoS attack caused by uncontrolled recursion when decoding deeply nested CBOR structures. This vulnerability affects both the...