CVE-2026-2709 in busyinformación

Resumen

por MITRE • 2026-02-19

A flaw has been found in busy up to 2.5.5. The affected element is an unknown function of the file source-code/busy-master/src/server/app.js of the component Callback Handler. Executing a manipulation of the argument state can lead to open redirect. It is possible to launch the attack remotely. The exploit has been published and may be used. The project was informed of the problem early through an issue report but has not responded yet.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

VulDB

Divulgación

2026-02-19

Moderación

aceptado

Artículo

VDB-346661

CPE

listo

CWE

CWE-601 (confirmado)

Explotación

Descargar

CVSS

3.5 (VulDB)

EPSS

0.00012

KEV

Actividades

muy bajo

Fuentes

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-2709
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-2709
CVE Details	https://www.cvedetails.com/cve/CVE-2026-2709/

◂ Anterior Visión De Conjunto Próximo ▸

Want to know what is going to be exploited?

We predict KEV entries!