url.Parse insufficiently validated the host/authority component and accepted some invalid URLs.
CVE-2026-25679
NONE
EPSS 0.05%
Updated Mar 06, 2026
url
CVE Details
CVE ID
CVE-2026-25679
Published Date
Mar 06, 2026
Vendor
url
Severity
NONE
Exploit Prediction (EPSS)
Probability of Exploit
0.05%
Likelihood of exploitation in next 30 days
Percentile:
16.0th percentile (higher than 16.0% of all CVEs)
Standard patching cycle
Impact
Minimal impact
Source
View Advisory