{"vulnerability": "CVE-2026-45372", "sightings": [{"uuid": "eb7a4f76-656b-49d7-8573-a671e8f8562a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45372", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmzgmyzox52g", "content": "\ud83d\udd34 CVE-2026-45372 - Critical (9.9)\n\ncpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.44.0...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-45372/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-29T21:01:28.509597Z"}, {"uuid": "dca24acc-c0b7-421c-9399-e032b9647ef6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45372", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmziti3zcz2h", "content": "CVE-2026-45372 - cpp-httplib: HTTP header value percent-decoding in server-side `parse_header` enables CRLF injection\nCVE ID : CVE-2026-45372\n \n Published : May 29, 2026, 8:16 p.m. | 16\u00a0minutes ago\n \n Description : cpp-httplib is a C++11 single-file header-only cross platform ...", "creation_timestamp": "2026-05-29T21:40:55.535206Z"}, {"uuid": "1b3b5e7f-0975-4ccd-a97d-2491d4e996ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45372", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116662972724180457", "content": "A lot of offensive activities were identified targeting yhirose cpp-httplib (CVE-2026-45372) https://vuldb.com/vuln/367381/cti", "creation_timestamp": "2026-05-30T10:08:12.626133Z"}, {"uuid": "70cb2fa4-c6de-4d99-961a-0ffa8097bc5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45372", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mnawo727wz2x", "content": "\ud83d\udccc CVE-2026-45372 - cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.44.0, when cpp-httplib's server parses an incoming reques... https://www.cyberhub.blog/cves/CVE-2026-45372", "creation_timestamp": "2026-06-01T20:37:05.740519Z"}, {"uuid": "d07dba17-5050-4118-b4a6-b513d5a0658b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45372", "type": "published-proof-of-concept", "source": "https://t.me/bdufstecru/3214", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0444\u0443\u043d\u043a\u0446\u0438\u0438 parse_header() \u0431\u0438\u0431\u043b\u0438\u043e\u0442\u0435\u043a\u0438 cpp-httplib \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0430\u043c\u0438 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0438 HTTP-\u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e, \u043e\u043a\u0430\u0437\u0430\u0442\u044c \u0432\u043e\u0437\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0435 \u043d\u0430 \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0441\u0442\u044c, \u0446\u0435\u043b\u043e\u0441\u0442\u043d\u043e\u0441\u0442\u044c \u0438 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e\u0441\u0442\u044c \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438\n\nBDU:2026-07650\nCVE-2026-45372\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\n\u0414\u043b\u044f cpp-httplib:\nhttps://github.com/yhirose/cpp-httplib/security/advisories/GHSA-xjxg-64p4-vj4m\n\n\u0414\u043b\u044f Debian GNU/Linux:\nhttps://security-tracker.debian.org/tracker/CVE-2026-45372", "creation_timestamp": "2026-06-03T14:41:54.000000Z"}]}