CVE-2026-24001High· 7.5▾ Twilightjsdiff is a JavaScript text differencing implementation. Prior to versions 8.0.3, 5.2.2, 4.0.4, and 3.5.1, attempting to parse a patch whose filename headers contain the line break characters `\r`, `\u2028`, or `\u2029` can cause the `pa…
▾ Twilight zone — High severity, or a signal on a lesser flaw
impact 41.3 · likelihood 0.1 · exploitation 0
The latest CVEs are free to read. CVE-2026-24001 is outside the free window — sign in (free) to view the full technical detail, affected versions, references, and raw markdown.