CVE Catalog

CVE-2026-10836

MediumCVSS 5.1
Published: Updated: Translated: NVD NIST

Summary

Improper handling of HTTP headers allows a remote attacker to manipulate the value of the Host header using specially crafted requests. A successful exploit could result in the generation of manipulated links or responses.

Risk Assessment

This could lead to limited information disclosure or compromising the integrity of dependent services, posing a risk to the organization.

Recommendation

It is recommended to review and improve the handling of HTTP headers in applications to prevent manipulation by remote attackers.

Original NVD description (English source)

Improper handling of HTTP headers that allows a remote attacker to manipulate the value of the Host header using specially crafted requests. A successful exploit could result in the generation of manipulated links or responses, potentially leading to limited information disclosure or compromising the integrity of dependent services.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS