HIGH
xddxdd
CVE published 2026-05-27
CVE-2026-45047
CVE-2026-45047 is a HIGH severity (CVSS 7.5) uncontrolled resource consumption vulnerability in bird-lg-go, a BIRD looking glass implementation written in Go. Published 2026-05-27, the flaw affects versions prior to 1.4.5. The apiHandler and webHandlerTelegramBot functions process user-provided JSON payloads using json.NewDecoder without enforcing a maximum read size. An unauthenticated remote attacker ca [truncated]