CVE Vulnerabilities

CVE-2026-44928

Always-Incorrect Control Flow Implementation

Published: May 08, 2026 | Modified: May 12, 2026
CVSS 3.x
5.3
MEDIUM
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
CVSS 2.x
RedHat/V2
RedHat/V3
5.3 MODERATE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Ubuntu
MEDIUM
root.io logo minimus.io logo echo.ai logo

In uriparser before 1.0.2, the function family EqualsUri can misclassify two unequal URIs as equal.

Weakness

The code contains a control flow path that does not reflect the algorithm that the path is intended to implement, leading to incorrect behavior any time this path is navigated.

Affected Software

NameVendorStart VersionEnd Version
UriparserUriparser_project*1.0.2 (excluding)
Red Hat Hardened ImagesRedHaturiparser-main-1.0.2-1.hum1*
UriparserUbuntuesm-apps/xenial*

References