CVE-2026-44302

Published: Mag 13, 2026 Last Modified: Mag 13, 2026

ExploitDB:

Other exploit source:

Google Dorks:

HIGH 7,5

Source: [email protected]

Attack Vector: network

Attack Complexity: low

Privileges Required: none

User Interaction: none

Scope: unchanged

Confidentiality: none

Integrity: none

Availability: high

Description

AI Translation Available

Snappier is a high performance C# implementation of the Snappy compression algorithm. Prior to 1.3.1, Snappier.SnappyStream enters an uncatchable infinite loop when decompressing a malformed framed-format Snappy stream as small as 15 bytes. This vulnerability is fixed in 1.3.1.

835

Loop with Unreachable Exit Condition ('Infinite Loop')

Incomplete

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Availability

Potential Impacts:

Dos: Resource Consumption (Cpu) Dos: Resource Consumption (Memory) Dos: Amplification

Applicable Platforms

All platforms may be affected

View CWE Details

https://github.com/brantburnett/Snappier/security/advisorie…

https://github.com/brantburnett/Snappier/security/advisories/GHSA-pggp-6c3x-2xmx

CVE-2026-44302

Description

Loop with Unreachable Exit Condition ('Infinite Loop')

Common Consequences

Applicable Platforms

Iscriviti alla newsletter