CyberRota
← Ana sayfaya dön

CVE-2026-48930

CRITICAL · CVSS 9.8 EPSS %0.38

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-26T02:16:52.723 · Çekilme zamanı: 2026-06-30T18:34:51.204451+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-48930
Severity
CRITICAL
CVSS
9.8
EPSS
%0.38

Orijinal NVD Açıklaması

A flaw in Node.js TLS hostname handling can cause Embedded-nul hostnames can lead to silent authority rebinding due to c-string truncation in resolver bindings. This vulnerability affects all supported release lines: **Node.js 22**, **Node.js 24**, and **Node.js 26**.