CVE-2026-16218
LOW
2.6
CVSS 3.1
Description
A vulnerability was detected in hunvreus devpush up to 0.4.6. Affected by this issue is the function reset_storage of the file app/workers/tasks/storage.py of the component Storage Reset Failure Handler. The manipulation results in improper check or handling of exceptional conditions. A high complexity level is associated with this attack. The exploitation is known to be difficult. The project was informed of the problem early through an issue report but has not responded yet.
Metadata
Severity & Metrics
2.6
LOW CVSS 3.1
CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N/E:X/RL:X/RC:R
Affected products (1)
| Vendor | Product | Platform | Versions |
|---|---|---|---|
| hunvreus | devpush | — | 0.4.0, 0.4.1, 0.4.2, 0.4.3 … |
Weakness (CWE)
| CWE | Source | Description |
|---|---|---|
| CWE-703 | cna | Improper Check or Handling of Exceptional Conditions |
CVSS scores (4)
| Score | Severity | Version | Source | Vector |
|---|---|---|---|---|
| 2.6 | LOW | 3.1 | cna | CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N/E:X/RL:X/RC:R |
| 2.6 | LOW | 3.0 | cna | CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N/E:X/RL:X/RC:R |
| 2.1 | LOW | 4.0 | cna | CVSS:4.0/AV:A/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X |
| 1.4 | N/D | 2.0 | cna | AV:A/AC:H/Au:S/C:N/I:P/A:N/E:ND/RL:ND/RC:UR |
References (6)
- VDB-380041 | hunvreus devpush Storage Reset Failure storage.py reset_storage improper check or handling of exceptional conditions https://vuldb.com/vuln/380041
- VDB-380041 | CTI Indicators (IOB, IOC, IOA) https://vuldb.com/vuln/380041/cti
- CVE-2026-16218 | CVE Analysis and Report https://vuldb.com/cve/CVE-2026-16218
- Submit #857951 | hunvreus devpush d67a99b62b3e2b044f1e0e9b06a3296fe1939fe3 CWE-703 Improper Check or Handling of Exceptional Conditions https://vuldb.com/submit/857951
- https://github.com/hunvreus/devpush/issues/69
- https://github.com/hunvreus/devpush/