Sign In

CVE-2026-26931

ADVISORY - github

Summary

Memory Allocation with Excessive Size Value (CWE-789) in the Prometheus remote_write HTTP handler in Metricbeat can lead Denial of Service via Excessive Allocation (CAPEC-130).

EPSS Score: 0.00018 (0.046)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-789

Memory Allocation with Excessive Size Value

ADVISORY - github

CWE-789

Memory Allocation with Excessive Size Value

Impacted images

Advisories

NIST

CREATED

UPDATED

ADVISORY IDCVE-2026-26931
EXPLOITABILITY SCORE

2.1

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
CWE-789

CVSS SCORE

5.7medium

GitHub

CREATED

UPDATED

ADVISORY IDGHSA-5vrw-qjxw-89r5
EXPLOITABILITY SCORE

2.1

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
CWE-789

CVSS SCORE

5.7medium

GoLang

CREATED

UPDATED

ADVISORY IDGO-2026-4790
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM ADVISORY

Chainguard

CREATED

UPDATED

ADVISORY ID

CGA-4394-p4m2-ww78

EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM ADVISORY

minimos

CREATED

UPDATED

ADVISORY ID

MINI-h63r-82w9-52jh

EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM ADVISORY

minimos

CREATED

UPDATED

ADVISORY ID

MINI-px32-585j-qfph

EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM ADVISORY

minimos

CREATED

UPDATED

ADVISORY ID

MINI-rq8g-28g8-5wgq

EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM ADVISORY