CVE-2026-1502

ADVISORY - nist

Summary

CR/LF bytes were not rejected by HTTP client proxy tunnel headers or host.

EPSS Score⁠: 0.00061 (0.188)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-93⁠

Improper Neutralization of CRLF Sequences ('CRLF Injection')

Impacted images

Advisories

Docker

CREATED

1 month ago

UPDATED

19 days ago

ADVISORY ID

CVE-2026-1502

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Package	Type	OS Name	OS Version	Affected Ranges	Fix Versions
python	dhi	-	-	<3.14.5-rc1	3.14.5-rc1
alpine/python-3.10	apk	alpine	3.23	<3.14.5-rc1	3.14.5-rc1
alpine/python-3.10	apk	alpine	3.23	>=3.15.0-alpha1,<3.15.0-beta1	3.15.0-beta1
alpine/python-3.11	apk	alpine	3.23	<3.14.5-rc1	3.14.5-rc1
alpine/python-3.11	apk	alpine	3.23	>=3.15.0-alpha1,<3.15.0-beta1	3.15.0-beta1
alpine/python-3.12	apk	alpine	3.23	<3.14.5-rc1	3.14.5-rc1
alpine/python-3.12	apk	alpine	3.23	>=3.15.0-alpha1,<3.15.0-beta1	3.15.0-beta1
alpine/python-3.13	apk	alpine	3.23	<3.14.5-rc1	3.14.5-rc1
alpine/python-3.13	apk	alpine	3.23	>=3.15.0-alpha1,<3.15.0-beta1	3.15.0-beta1
alpine/python-3.14	apk	alpine	3.23	<3.14.5-rc1	3.14.5-rc1
alpine/python-3.14	apk	alpine	3.23	>=3.15.0-alpha1,<3.15.0-beta1	3.15.0-beta1
python	dhi	-	-	>=3.15.0-alpha1,<3.15.0-beta1	3.15.0-beta1

Severity and metrics

No CVSS data available from this advisory.

NIST

CREATED

1 month ago

UPDATED

7 hours ago

ADVISORY IDCVE-2026-1502⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-93⁠

CVSS SCORE

5.7medium

Debian

CREATED

28 days ago

UPDATED

2 days ago

ADVISORY IDCVE-2026-1502⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Ubuntu

CREATED

27 days ago

UPDATED

27 days ago

ADVISORY IDCVE-2026-1502⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

Alma

CREATED

14 days ago

UPDATED

13 days ago

ADVISORY IDALSA-2026:10950⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Bitnami

CREATED

24 days ago

UPDATED

19 days ago

ADVISORY ID

BIT-libpython-2026-1502

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

5.7medium

Bitnami

CREATED

24 days ago

UPDATED

19 days ago

ADVISORY ID

BIT-python-2026-1502

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

5.7medium

Bitnami

CREATED

24 days ago

UPDATED

19 days ago

ADVISORY ID

BIT-python-min-2026-1502

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

5.7medium

Rocky

CREATED

13 days ago

UPDATED

13 days ago

ADVISORY IDRLSA-2026:10950⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Oracle

CREATED

14 days ago

UPDATED

14 days ago

ADVISORY IDELSA-2026-10950⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Chainguard

CREATED

7 days ago

UPDATED

7 days ago

ADVISORY ID

CGA-f3xq-534h-274w

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY