CVE-2026-54297 | lostisland faraday up to 1.10.5/2.14.2 Common Interface NestedParamsEncoder recursion

Inserito da Angelo Barbosa | Giu 24, 2026 | CVE

A vulnerability labeled as problematic has been found in lostisland faraday up to 1.10.5/2.14.2. The impacted element is the function Faraday::NestedParamsEncoder of the component Common Interface. Such manipulation leads to uncontrolled recursion.

This vulnerability is uniquely identified as CVE-2026-54297. The attack can be launched remotely. No exploit exists.

The affected component should be upgraded.

CVE-2026-54297 | lostisland faraday up to 1.10.5/2.14.2 Common Interface NestedParamsEncoder recursion

Post correlati

CVE-2024-7743 | wanglongcn ltcms 1.0.20 API Endpoint /api/file/downloadUrl file server-side request forgery

CVE-2025-49433 | Supermalink Plugin up to 1.1 on WordPress cross site scripting

CVE-2024-0455 | mintplex-labs anything-llm up to 0.0.x server-side request forgery

CVE-2024-44334 | D-Link DI-7400G+V2 24.04.18 CGI upgrade_filter.asp Privilege Escalation