CVE-2026-50052_CVE-2026-50052

2.3 / 10

LOW

CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:P/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N/S:N/AU:N/R:A/V:D/RE:L/U:Green

Description

In Vinyl Cache before 9.0.1 and Varnish Cache before 9.0.3, a deficiency in HTTP/2 request parsing can be exploited to launch a backend request desync
attack (request smuggling), which in turn can be used for cache poisoning,
authentication bypass, or possibly even information disclosure and manipulation. The attack vector only exists if HTTP/2 support is enabled by setting the
feature parameter to contain +http2. HTTP/2 support is disabled by
default.

Basic Information

ID CVE-2026-50052

Source mitre

Published Jun 3, 2026 at 03:56

Modified Jun 3, 2026 at 03:59

Affected Product

Vendor The Vinyl Cache Project

Product Vinyl Cache

Version 9.0.0

Affected Versions The Vinyl Cache Project Vinyl Cache 9.0.0
The Vinyl Cache Project Varnish Cache (pre split) 7.6.0
The Vinyl Cache Project Varnish Cache (pre split) 6.0.14
Varnish Software Varnish Cache by Varnish Software 9.0.0

CWE Classification

CWE-444

References

vinyl-cache.org /security/VSV00019.html

{
    "lastseen": "",
    "description": "In Vinyl Cache before 9.0.1 and Varnish Cache before 9.0.3, a deficiency in HTTP/2 request parsing can be exploited to launch a backend request desync\nattack (request smuggling), which in turn can be used for cache poisoning,\nauthentication bypass, or possibly even information disclosure and manipulation. The attack vector only exists if HTTP/2 support is enabled by setting the\nfeature parameter to contain +http2. HTTP/2 support is disabled by\ndefault.",
    "published": "2026-06-03T03:56:01.974Z",
    "modified": "2026-06-03T03:59:35.155Z",
    "type": "cve",
    "title": "CVE-2026-50052",
    "source": "mitre",
    "references": "https://vinyl-cache.org/security/VSV00019.html",
    "id": "CVE-2026-50052",
    "bulletinFamily": "",
    "cwe": [
        "CWE-444"
    ],
    "cvelist": null,
    "sourceData": "The Vinyl Cache Project Vinyl Cache 9.0.0\nThe Vinyl Cache Project Varnish Cache (pre split) 7.6.0\nThe Vinyl Cache Project Varnish Cache (pre split) 6.0.14\nVarnish Software Varnish Cache by Varnish Software 9.0.0",
    "sourceHref": "",
    "cvss": {
        "score": 2.3,
        "severity": "LOW",
        "vector": "CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:P/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N/S:N/AU:N/R:A/V:D/RE:L/U:Green",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Vinyl Cache",
    "version": "9.0.0",
    "vendor": "The Vinyl Cache Project",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}