Infinite loop Affecting corewcf.netframingbase package, versions [,1.8.1)[1.9.0,1.9.1)
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk IDSNYK-DOTNET-COREWCFNETFRAMINGBASE-17394033
- published22 Jun 2026
- disclosed19 Jun 2026
- creditUnknown
Introduced: 19 Jun 2026
NewCVE-2026-54772 (opens in a new tab)How to fix?
Upgrade CoreWCF.NetFramingBase to version 1.8.1, 1.9.1 or higher.
Overview
Affected versions of this package are vulnerable to Infinite loop through the preamble decode loop in DuplexFramingMiddleware and SingletonFramingMiddleware, with the same end-of-stream handling issue in RawStream.ReadAsyncInternal. An attacker can keep a server connection open indefinitely by sending the 5-byte version-and-mode preamble, then closing the send side before the via record arrives, causing repeated empty completed reads that never advance the handshake. This leaves the connection stuck during channel initialization until the client-side read timeout or external abort, tying up server resources and preventing the Net.TCP endpoint from tearing the connection down promptly.
Notes
- Pre-authentication exposure is limited to services that publish a NetTcpBinding, NetNamedPipeBinding, or UnixDomainSocketBinding endpoint.