CVE-2026-49860— Deno: WebSocket API sandbox bypass via missing post-DNS check
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-49860
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Deno: WebSocket API sandbox bypass via missing post-DNS check
Source: NVD (National Vulnerability Database)
Vulnerability Description
Deno is a JavaScript, TypeScript, and WebAssembly runtime. Prior to 2.8.1, when a WebSocket connection was opened, Deno checked the destination hostname against --deny-net rules but did not re-check the IP addresses that hostname resolved to. An attacker-controlled script could use a specially crafted domain name that passes the hostname check yet resolves to a denied IP, bypassing the network restriction entirely. This vulnerability is fixed in 2.8.1.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
服务端请求伪造(SSRF)
Source: NVD (National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2026-49860
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-49860
请登录查看更多情报信息。
Other References for CVE-2026-49860 (1)
Same Patch Batch · denoland · 2026-06-23 · 10 CVEs total
| CVE-2026-49402 | 8.1 HIGH | Deno: Command Injection via spawnSync & spawn on Windows |
| CVE-2026-49440 | 7.4 HIGH | Deno: Miller-Rabin Primality Test Allows Zero Rounds |
| CVE-2026-44726 | 7.4 HIGH | Deno: TLS retry copies stale upgrade hook, risking plaintext traffic |
| CVE-2026-49401 | 7.3 HIGH | Deno Permission Bypass via Unicode Normalization Mismatch on macOS (APFS) |
| CVE-2026-49411 | 6.5 MEDIUM | Deno Node TCPWrap numeric hostname aliases bypass --deny-net resolved-IP deny checks |
| CVE-2026-49406 | 5.5 MEDIUM | Deno: BYONM module resolution allows `package.json` main path traversal to bypass `--allow |
| CVE-2026-49983 | 5.2 MEDIUM | Deno: process.loadEnvFile() bypasses env permission checks and mutates process.env with on |
| CVE-2026-49859 | 5.2 MEDIUM | Deno: `fetch()` API sandbox bypass via missing DNS resolution check |
| CVE-2026-55517 | 4.3 MEDIUM | Deno: Denial of service via non-ASCII bytes in WebSocket response headers |
IV. Related Vulnerabilities
Same product: deno
- CVE-2026-55517
Deno: Denial of service via non-ASCII bytes in WebSocket res - CVE-2026-44726
Deno: TLS retry copies stale upgrade hook, risking plaintext - CVE-2026-49401
Deno Permission Bypass via Unicode Normalization Mismatch on - CVE-2026-49402
Deno: Command Injection via spawnSync & spawn on Windows - CVE-2026-49406
Deno: BYONM module resolution allows `package.json` main pat
Same vendor: denoland
- CVE-2026-55517
Deno: Denial of service via non-ASCII bytes in WebSocket res - CVE-2026-44726
Deno: TLS retry copies stale upgrade hook, risking plaintext - CVE-2026-49401
Deno Permission Bypass via Unicode Normalization Mismatch on - CVE-2026-49402
Deno: Command Injection via spawnSync & spawn on Windows - CVE-2026-49406
Deno: BYONM module resolution allows `package.json` main pat
Same weakness: CWE-918
- CVE-2026-28385
SSRF via image import from URL allows internal network probi - CVE-2026-56663
AutoGPT: SSRF-to-RCE Chain in `SendWebRequestBlock` via IP v - CVE-2026-57627
WordPress Kirki plugin <= 6.0.11 - Server Side Request Forge - CVE-2026-56026
WordPress utm.codes plugin <= 1.9.0 - Server Side Request Fo - CVE-2026-4339
SSRF via unvalidated attachment URLs in Mattermost Agents pl
V. Comments for CVE-2026-49860
No comments yet