CVE-2026-41146 - facil.io and downstream iodine ruby gem vulnerable to uncontrolled resource consumption and loop with unreachable exit condition
CVE ID :CVE-2026-41146 Published : April 22, 2026, 2:16 a.m. | 44 minutes ago Description :facil.io is a C micro-framework for web applications. Prior to commit 5128747363055201d3ecf0e29bf0a961703c9fa0, `fio_json_parse` can enter an infinite loop when it encounters a nested JSON value starting
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Microsoft warns of fake IT worker identities infiltrating cloud environments
- [CYBER] Phishing reclaims the top initial access spot, attackers experiment with AI tools
- [CYBER] The AI era demands a different kind of CISO
- [CYBER] New GoGra malware for Linux uses Microsoft Graph API for comms
- [CYBER] Google Antigravity in Crosshairs of Security Researchers, Cybercriminals
- [CYBER] How to use AI to identify and fix security vulnerabilities in your codebase