CVE-2026-45135 | caddyserver caddy 2.11.1/2.11.2 FastCGI splitPos unicode encoding

Inserito da Angelo Barbosa | Mag 19, 2026 | CVE

A vulnerability labeled as problematic has been found in caddyserver caddy 2.11.1/2.11.2. This affects the function splitPos of the component FastCGI. The manipulation results in improper handling of unicode encoding.

This vulnerability is reported as CVE-2026-45135. The attack can be launched remotely. No exploit exists.

The affected component should be upgraded.

CVE-2026-45135 | caddyserver caddy 2.11.1/2.11.2 FastCGI splitPos unicode encoding

Post correlati

CVE-2024-53939 | Victure RX1800 WiFi 6 Router EN_V1.0.0_r12_110933 Dual_freq_un_apple name command injection

CVE-2024-24958 | AutomationDirect Productivity 3000 P3-550E 1.2.10.9 FileSystem API out-of-bounds write (icsa-24-144-01)

CVE-2025-29745 | Emsisoft Anti-Malware 2018.8.1.8923 Scanning Module information disclosure

CVE-2024-3110 | mintplex-labs anything-llm up to 0.x cross site scripting