Vulnerability Description
A vulnerability was determined in jsbroks COCO Annotator up to 0.11.1. This impacts an unknown function of the file /api/info/long_task of the component Endpoint. This manipulation causes denial of service. The attack may be initiated remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Jsbroks | Coco Annotator | <= 0.11.1 |
Related Weaknesses (CWE)
References
- https://github.com/nmmorette/vulnerability-research/blob/main/coco-anotator/UnauExploitThird Party Advisory
- https://vuldb.com/?ctiid.344684Permissions RequiredVDB Entry
- https://vuldb.com/?id.344684Third Party AdvisoryVDB Entry
- https://vuldb.com/?submit.745547Third Party AdvisoryVDB Entry
FAQ
What is CVE-2026-2108?
CVE-2026-2108 is a vulnerability with a CVSS score of 5.3 (MEDIUM). A vulnerability was determined in jsbroks COCO Annotator up to 0.11.1. This impacts an unknown function of the file /api/info/long_task of the component Endpoint. This manipulation causes denial of se...
How severe is CVE-2026-2108?
CVE-2026-2108 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-2108?
Check the references section above for vendor advisories and patch information. Affected products include: Jsbroks Coco Annotator.