Threats Tagged 'cve-2026-40164'
View all threats tagged with 'cve-2026-40164'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2026-40164'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-40164: CWE-328: Use of Weak Hash in jqlang jqCVE-2026-40164 0 jq versions prior to commit 0c7d133c3c7e37c00b6d46b658a02244fdd3c784 used MurmurHash3 with a hardcoded, publicly known seed for JSON object hashing. This allowed attackers to craft JSON objects that cause all keys to collide in the same hash bucket, degrading performance from O(1) to O(n) and turning jq operations into O(n²), resulting in significant CPU exhaustion. This vulnerability affects jq use in CI/CD pipelines, web services, and data processing scripts. The issue has been patched in the specified commit. Join the discussion | CVE Database V5 | 04/13/2026, 23:40:12 UTC Added: 04/14/2026, 00:01:53 UTC |
Showing 1 to 1 of 1 result