PT-2026-35358 · Uriparser · Uriparser

Worwin

Published

2026-04-27

Updated

2026-05-18

CVE-2026-42371

CVSS v3.1

5.1

Medium

Vector

AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions uriparser versions prior to 1.0.1

Description Numeric truncation occurs during text range comparison when an application accepts URIs with a length in gigabytes. This issue is characterized as an integer overflow, which happens when a numeric value exceeds the maximum capacity of the data type used to store it.

Recommendations Update to version 1.0.1.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-197

Related Identifiers

CVE-2026-42371

ECHO-3740-13E8-652E

OESA-2026-2187

OESA-2026-2188

OESA-2026-2229

OESA-2026-2230

OESA-2026-2231

OPENSUSE-SU-2026:10747-1

RHSA-2026:12430

Affected Products

Uriparser

PT-2026-35358 · Uriparser · Uriparser

CVE-2026-42371

Weakness Enumeration

Related Identifiers

Affected Products

References · 38