CVE-2026-42504

ADVISORY - nist

Summary

Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU.

EPSS Score⁠: 0.00018 (0.048)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-407⁠

Inefficient Algorithmic Complexity

Impacted images

Advisories

GoLang

CREATED

2 days ago

UPDATED

2 days ago

ADVISORY IDGO-2026-5038⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Package	Type	OS Name	OS Version	Affected Ranges	Fix Versions
stdlib	golang	-	-	<1.25.11	1.25.11
stdlib	golang	-	-	>=1.26.0-0,<1.26.4	1.26.4

Severity and metrics

No CVSS data available from this advisory.

NIST

CREATED

2 days ago

UPDATED

1 day ago

ADVISORY IDCVE-2026-42504⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-407⁠

CVSS SCORE

7.5high

Debian

CREATED

1 day ago

UPDATED

16 hours ago

ADVISORY IDCVE-2026-42504⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Ubuntu

CREATED

1 day ago

UPDATED

16 hours ago

ADVISORY IDCVE-2026-42504⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium