Hono Vulnerabilities
Comprehensive security vulnerability database for Hono products
1
0
1
0
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2026-27700 | 7.5 | An attacker can bypass IP-based access controls in Hono applications by manipulating the `X-Forwarded-For` header, allowing them to gain unauthorized access to restricted areas. This vulnerability occurs specifically when using the AWS Lambda adapter behind an Application Load Balancer in versions 4.12.0 and 4.12.1, and it has been fixed in version 4.12.2. | honohono | Exploit Available | about 1 month agoFeb 25, 2026 |
About Hono Security
This page tracks all publicly disclosed security vulnerabilities (CVEs) affecting Hono products. Our database is updated in real-time from the National Vulnerability Database (NVD) and enriched with exploit information from GitHub and other security research sources.
Each CVE listing includes CVSS severity scores, exploit availability status, AI-powered vulnerability summaries, and links to official patches and security advisories.