CVE-2026-39806 | mtrudel bandit up to 1.11.0 TCP Connection socket.ex do_read_chunked_data infinite loop

Inserito da Angelo Barbosa | Mag 13, 2026 | CVE

A vulnerability, which was classified as problematic, was found in mtrudel bandit up to 1.11.0. This impacts the function do_read_chunked_data in the library lib/bandit/http1/socket.ex of the component TCP Connection Handler. Executing a manipulation can lead to infinite loop.

This vulnerability is handled as CVE-2026-39806. The attack can be executed remotely. There is not any exploit available.

You should upgrade the affected component.

CVE-2026-39806 | mtrudel bandit up to 1.11.0 TCP Connection socket.ex do_read_chunked_data infinite loop

Post correlati

CVE-2024-13131 | Dahua IPC-HFW1200S up to 20241222 Web Interface /web_caps/webCapsConfig information disclosure

CVE-2025-11357 | code-projects Simple Banking System 1.0 /createuser.php Name sql injection

CVE-2025-40577 | Siemens SCALANCE LPE9403 dcpd out-of-bounds (ssa-327438)

CVE-2024-51679 | GentleSource Appointmind Plugin up to 4.0.0 on WordPress cross-site request forgery