CVE Vulnerabilities

CVE-2026-12588

Improper Handling of Highly Compressed Data (Data Amplification)

Published: Jul 14, 2026 | Modified: Jul 14, 2026
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu
root.io logo minimus.io logo echo.ai logo

An attacker with access to an HX 10.0.0  and previous versions, may send specially-crafted data to the HX console. The malicious detection would then trigger decompression of a large file that consumes an excessive amount of system resources thus causing a Denial of Service.

Weakness

The product does not handle or incorrectly handles a compressed input with a very high compression ratio that produces a large output.

References