Vulnerability intelligence

CVE-2026-49160

Uncontrolled resource consumption in HTTP/2 allows an unauthorized attacker to deny service over a network.

CVSS Score

7.5

High

EPSS — Exploit Probability

1.2%

Riskier than 80% of all CVEs

Exploitation

Not in CISA KEV

No federal exploitation record

Remediation

Patch available

Vendor fix published

NVD entry Vendor patch PoC / advisory

7 articles across 7 outlets · first covered Jun 9, 2026 · latest Jun 10, 2026

Tracked incidents

vulnerability open 11 articles

Microsoft June 2026 Patch Tuesday fixes 206 flaws, including CVE-2026-49160 zero‑day

Coverage timeline

MS Patch Tuesday 2026 Fixes 206 Flaws Including Three Zero Days
socradar.io · Jun 10, 2026
Microsoft patches record 206 flaws, fixing three zero‑day bugs
www.malwarebytes.com · Jun 10, 2026
Microsoft patches 200 flaws, zero day BitLocker bypass urgent
www.infosecurity-magazine.com · Jun 10, 2026
Microsoft Patch Tuesday fixes 206+ flaws amid zero day exploits
securityonline.info · Jun 10, 2026
Microsoft ships record patch batch amid AI driven vuln surge
krebsonsecurity.com · Jun 9, 2026
Microsoft June 2026 Patch Tuesday, (Tue, Jun 9th)
isc.sans.edu · Jun 9, 2026
Microsoft fixes 200 bugs in June, none exploited, dozens critical
www.securityweek.com · Jun 9, 2026