CyberRota
← Ana sayfaya dön

CVE-2026-48930

CRITICAL · CVSS 9.8 EPSS %0.40

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-26T02:16:52.723 · Çekilme zamanı: 2026-07-15T12:03:51.917735+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-48930
Severity
CRITICAL
CVSS
9.8
EPSS
%0.40

Orijinal NVD Açıklaması

A flaw in Node.js TLS hostname handling can cause Embedded-nul hostnames can lead to silent authority rebinding due to c-string truncation in resolver bindings. This vulnerability affects all supported release lines: **Node.js 22**, **Node.js 24**, and **Node.js 26**.