https://feed.craftedsignal.io/tags/c2cciutils/Trending threats, MITRE ATT&CK coverage, and detection metadata — refreshed continuously.Hugoenhello@craftedsignal.iohello@craftedsignal.ioThu, 26 Mar 2026 22:27:55 +0000https://feed.craftedsignal.io/briefs/2026-07-c2c-ci-utils-dos/Thu, 26 Mar 2026 22:27:55 +0000hello@craftedsignal.iohttps://feed.craftedsignal.io/briefs/2026-07-c2c-ci-utils-dos/The c2cciutils package is vulnerable to denial of service due to an uncontrolled recursion vulnerability (CWE-674) in the pyasn dependency, specifically versions before 1.1.65.<p>The c2cciutils package, a CI utility, is susceptible to a denial-of-service (DoS) attack due to an uncontrolled recursion vulnerability within its pyasn dependency. Specifically, versions of c2cciutils prior to 1.1.65 are affected. This vulnerability, identified as CVE-2026-30922, stems from a flaw in the pyasn library (see GHSA-jr27-m4p2-rc6r) which leads to excessive resource consumption when processing certain inputs. An attacker can exploit this flaw remotely with low complexity, no…</p> highadvisorydenial-of-servicepyasnc2cciutilsdependency-vulnerability