CVE-2026-41585 in Zebra정보

요약

\~에 의해 MITRE • 2026. 05. 08.

ZEBRA is a Zcash node written entirely in Rust. From zebrad versions 2.2.0 to before 4.3.1 and from zebra-rpc versions 1.0.0-beta.45 to before 6.0.2, a vulnerability in Zebra's JSON-RPC HTTP middleware allows an authenticated RPC client to cause a Zebra node to crash by disconnecting before the request body is fully received. The node treats the failure to read the HTTP request body as an unrecoverable error and aborts the process instead of returning an error response. This issue has been patched in zebrad version 4.3.1 and zebra-rpc version 6.0.2.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

책임이 있는

GitHub M

예약하다

2026. 04. 21.

공개

2026. 05. 08.

모더레이션

수락

항목

VDB-362292

CPE

준비됨

CWE

CWE-248 (확인됨)

CVSS

2.7 (VulDB)

EPSS

0.00045

KEV

아니요

활동

매우 낮음

출처

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-41585
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-41585
CVE Details	https://www.cvedetails.com/cve/CVE-2026-41585/

◂ 이전 개요 다음 ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!