Uriparser_project Uriparser
3 CVEs affecting Uriparser_project Uriparser. Latest disclosed: 2026-05-08. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-42371 | Medium | 5.1 | 2026-04-27 | uriparser before 1.0.1 has numeric truncation in text range comparison, if an application accepts URIs with a length in gigabytes. |
CVE-2026-44928 | Low | 2.9 | 2026-05-08 | In uriparser before 1.0.2, the function family EqualsUri can misclassify two unequal URIs as equal. |
CVE-2026-44927 | Low | 2.9 | 2026-05-08 | In uriparser before 1.0.2, there is pointer difference truncation to int in various places. |