CVE-2026-10836
MediumCVSS 5.1Summary
Improper handling of HTTP headers allows a remote attacker to manipulate the value of the Host header using specially crafted requests. A successful exploit could result in the generation of manipulated links or responses.
Risk Assessment
This could lead to limited information disclosure or compromising the integrity of dependent services, posing a risk to the organization.
Recommendation
It is recommended to review and improve the handling of HTTP headers in applications to prevent manipulation by remote attackers.
Original NVD description (English source)
Improper handling of HTTP headers that allows a remote attacker to manipulate the value of the Host header using specially crafted requests. A successful exploit could result in the generation of manipulated links or responses, potentially leading to limited information disclosure or compromising the integrity of dependent services.

