Ninenines Cowlib — known CVE vulnerabilities
Every CVE whose affected-product data names Ninenines Cowlib, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
- CVE-2026-7790 — CVSS 7.5 (high): Uncontrolled Resource Consumption vulnerability in ninenines cowlib (cow_http_te module) allows Excessive Allocation. The chunked…
- CVE-2026-43968 — CVSS 4.0 (medium): Improper Neutralization of CRLF Sequences ('CRLF Injection') vulnerability in ninenines cowlib allows SSE event splitting and injection via…
- CVE-2026-43969 — CVSS 3.2 (low): Improper Neutralization of CRLF Sequences ('CRLF Injection') vulnerability in ninenines cowlib allows HTTP request splitting and cookie…