CVE-2026-0672 Blast Radius

MEDIUM • CVSS 6When using http.cookies.Morsel, user-controlled cookie values and parameters can allow injecting HTTP headers into messages. Patch rejects all control

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2026-0672.

Start Free Scan →← Back to CVE-2026-0672