PatchSiren cyber security CVE debrief
CVE-2026-45290 CloudburstMC CVE debrief
A vulnerability in Cloudburst Network's network components, used within Cloudburst projects, was discovered in versions prior to `1.0.0.CR3-20260417.085727-30`. This vulnerability, with a CVSS score of 7.5 and HIGH severity, allows an attacker to exploit it and stall the netty event loop, rendering it inoperable. The affected software is publicly accessible, and all consumers of the library are advised to upgrade to at least version `1.0.0.CR3-20260417.085727-30`. There are no known workarounds beyond updating the library.
- Vendor
- CloudburstMC
- Product
- Network
- CVSS
- HIGH 7.5
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-05
- Original CVE updated
- 2026-06-05
- Advisory published
- 2026-06-05
- Advisory updated
- 2026-06-05
Who should care
Users of Cloudburst Network's network components, specifically those using versions prior to `1.0.0.CR3-20260417.085727-30`, should be aware of this vulnerability and take action to upgrade to a patched version.
Technical summary
The vulnerability has a CVSS vector of CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H and is classified under CWE-770. It was published on [cvePublishedAt] and last modified on [cveModifiedAt].
Defensive priority
HIGH
Recommended defensive actions
- Upgrade to at least version `1.0.0.CR3-20260417.085727-30` of the Cloudburst Network library.
Evidence notes
The CVE record can be found at [resourceLinkAnnotations.cve-org]. More details are available on the NVD website at [resourceLinkAnnotations.nvd]. The source item URL is [resourceLinkAnnotations.source-item], and a source reference can be found at [resourceLinkAnnotations.ref-4].
Official resources
-
CVE-2026-45290 CVE record
CVE.org
-
CVE-2026-45290 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
CVE-2026-45290 was published on 2026-06-05T18:17:26.343Z and last modified on 2026-06-05T19:02:13.790Z.