ID:12813 - Exploit for NULL pointer dereference in kin-openapi
Published: July 13, 2026
Vulnerability identifier: #VU137377
Vulnerability risk: Medium
CVE-ID: N/A
CWE-ID: CWE-476
Exploitation vector: Remote access
Vulnerable software:
kin-openapi
kin-openapi
Link to public exploit:
Vulnerability description
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a NULL pointer dereference error in openapi3filter.ConvertErrors. A remote attacker can pass specially crafted data to the application and perform a denial of service (DoS) attack.
Remediation
Cybersecurity Help is currently unaware of any official solution to address this vulnerability.