CVE-2026-3269 PUBLISHED

psi-probe PSI Probe Session ExpireSessionsController.java handleRequestInternal denial of service

Assigner: VulDB
Reserved: 26.02.2026 Published: 26.02.2026 Updated: 26.02.2026

A flaw has been found in psi-probe PSI Probe up to 5.3.0. The impacted element is the function handleRequestInternal of the file psi-probe-core/src/main/java/psiprobe/controllers/sessions/ExpireSessionsController.java of the component Session Handler. Executing a manipulation can lead to denial of service. The attack can be launched remotely. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Metrics

CVSS Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P
CVSS Score: 5.3

Product Status

Vendor psi-probe
Product PSI Probe
Versions
  • Version 5.0 is affected
  • Version 5.1 is affected
  • Version 5.2 is affected
  • Version 5.3.0 is affected

Credits

  • Ana10gy (VulDB User) reporter
  • VulDB coordinator

References

Problem Types

  • Denial of Service CWE