CVE-2026-25679

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions AWS Lambda (affected versions not specified)

Description The

url.Parse

function did not properly validate the host or authority component of URLs, allowing the acceptance of invalid URLs. This issue impacts the standard library in 27 Lambda base images.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2026-25679

GO-2026-4601

OPENSUSE-SU-2026:10299-1

Affected Products

Aws-Lambda

CVE-2026-25679

Related Identifiers

Affected Products

References · 18