Vendor
Uriparser
Products
1
CVEs
4
Across products
4
Status
Private
Products
1- 4 CVEs
Recent CVEs
4| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-42371 | Med | 0.33 | 5.1 | 0.00 | Apr 27, 2026 | uriparser before 1.0.1 has numeric truncation in text range comparison, if an application accepts URIs with a length in gigabytes. | |
| CVE-2026-44928 | Low | 0.19 | 2.9 | 0.00 | May 8, 2026 | In uriparser before 1.0.2, the function family EqualsUri can misclassify two unequal URIs as equal. | |
| CVE-2026-44927 | Low | 0.19 | 2.9 | 0.00 | May 8, 2026 | In uriparser before 1.0.2, there is pointer difference truncation to int in various places. | |
| CVE-2025-67899 | Low | 0.19 | 2.9 | 0.00 | Dec 14, 2025 | uriparser through 0.9.9 allows unbounded recursion and stack consumption, as demonstrated by ParseMustBeSegmentNzNc with large input containing many commas. |