CVE-2026-9375: CWE-400 Uncontrolled Resource Consumption in urllib3 urllib3/urllib3
urllib3 version 2.6.3 is vulnerable to a decompression bomb bypass in its streaming API (`preload_content=False`) when using Brotli support. The issue arises due to three independent code paths in `response.py` that bypass the `max_length` protection introduced in version 2.6.0 to mitigate CVE-2025-66471. Specifically, negative `max_length` values can be produced due to buffer arithmetic in `read()`, `flush_decoder` unconditionally overrides `max_length` to `-1`, and `_flush_decoder()` passes no limit at all, defaulting to unlimited decompression. This allows a malicious HTTP server to trigger an out-of-memory (OOM) condition by decompressing large payloads into memory, leading to a denial of service (DoS). The vulnerability affects urllib3 2.6.3 and Brotli 1.2.0 and impacts applications and libraries using `requests` or `urllib3` to stream content from untrusted sources.
AI Analysis
Technical Summary
CVE-2026-9375 is a high-severity vulnerability in urllib3 version 2.6.3 and Brotli 1.2.0 involving uncontrolled resource consumption (CWE-400) via a decompression bomb bypass in the streaming API when preload_content is false. The vulnerability stems from three independent code paths in response.py that bypass the max_length protection introduced in urllib3 2.6.0 to mitigate a previous CVE. Specifically, negative max_length values can be produced due to buffer arithmetic in read(), flush_decoder unconditionally sets max_length to -1, and _flush_decoder() passes no limit, defaulting to unlimited decompression. This allows a malicious HTTP server to trigger an out-of-memory condition by decompressing large payloads into memory, resulting in denial of service. The vulnerability affects applications and libraries using requests or urllib3 to stream content from untrusted sources.
Potential Impact
Successful exploitation can cause an out-of-memory condition on the client side, leading to denial of service. There is no impact on confidentiality or integrity reported. The vulnerability affects the availability of applications using vulnerable versions of urllib3 and Brotli when streaming content from untrusted HTTP servers.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. No official fix or patch links are provided at this time. Users should avoid streaming content with preload_content set to false when using Brotli decompression on affected versions or implement other controls to limit resource consumption until a fix is available.
CVE-2026-9375: CWE-400 Uncontrolled Resource Consumption in urllib3 urllib3/urllib3
Description
urllib3 version 2.6.3 is vulnerable to a decompression bomb bypass in its streaming API (`preload_content=False`) when using Brotli support. The issue arises due to three independent code paths in `response.py` that bypass the `max_length` protection introduced in version 2.6.0 to mitigate CVE-2025-66471. Specifically, negative `max_length` values can be produced due to buffer arithmetic in `read()`, `flush_decoder` unconditionally overrides `max_length` to `-1`, and `_flush_decoder()` passes no limit at all, defaulting to unlimited decompression. This allows a malicious HTTP server to trigger an out-of-memory (OOM) condition by decompressing large payloads into memory, leading to a denial of service (DoS). The vulnerability affects urllib3 2.6.3 and Brotli 1.2.0 and impacts applications and libraries using `requests` or `urllib3` to stream content from untrusted sources.
CVSS v3.0
Score 7.5high
Affected software
Run on your own infrastructure? Check whether these packages are installed with threat-finder — our free open-source scanner.
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2026-9375 is a high-severity vulnerability in urllib3 version 2.6.3 and Brotli 1.2.0 involving uncontrolled resource consumption (CWE-400) via a decompression bomb bypass in the streaming API when preload_content is false. The vulnerability stems from three independent code paths in response.py that bypass the max_length protection introduced in urllib3 2.6.0 to mitigate a previous CVE. Specifically, negative max_length values can be produced due to buffer arithmetic in read(), flush_decoder unconditionally sets max_length to -1, and _flush_decoder() passes no limit, defaulting to unlimited decompression. This allows a malicious HTTP server to trigger an out-of-memory condition by decompressing large payloads into memory, resulting in denial of service. The vulnerability affects applications and libraries using requests or urllib3 to stream content from untrusted sources.
Potential Impact
Successful exploitation can cause an out-of-memory condition on the client side, leading to denial of service. There is no impact on confidentiality or integrity reported. The vulnerability affects the availability of applications using vulnerable versions of urllib3 and Brotli when streaming content from untrusted HTTP servers.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. No official fix or patch links are provided at this time. Users should avoid streaming content with preload_content set to false when using Brotli decompression on affected versions or implement other controls to limit resource consumption until a fix is available.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- @huntr_ai
- Date Reserved
- 2026-05-23T14:33:21.716Z
- Cvss Version
- 3.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a35966af198dc38c113831d
Added to database: 6/19/2026, 7:20:10 PM
Last enriched: 6/19/2026, 7:34:57 PM
Last updated: 6/19/2026, 11:06:45 PM
Views: 5
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.