CyberRota
← Ana sayfaya dön

CVE-2026-48928

MEDIUM · CVSS 5.4 EPSS %0.25

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-26T02:16:52.610 · Çekilme zamanı: 2026-06-30T18:34:51.161522+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-48928
Severity
MEDIUM
CVSS
5.4
EPSS
%0.25

Orijinal NVD Açıklaması

A inconsistency in Node.js hostname matching can cause a trust-policy bypass in multi-context mTLS setups. This vulnerability affects all supported release lines: **Node.js 22**, **Node.js 24**, and **Node.js 26**.