EEF-CVE-2026-8469

See a problem?
Please try reporting it to the source first.

Source

https://cna.erlef.org/osv/EEF-CVE-2026-8469.html

Import Source

https://cna.erlef.org/osv/EEF-CVE-2026-8469.json

JSON Data

https://api.osv.dev/v1/vulns/EEF-CVE-2026-8469

Aliases

CVE-2026-8469
GHSA-833p-95jq-929q

Published

2026-05-20T13:35:27.914Z

Modified

2026-05-20T13:56:23.185014232Z

Severity

8.2 (High) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVSS Calculator

Summary

Unauthenticated denial-of-service via BEAM atom table exhaustion in phoenix_storybook

Details

Summary

Allocation of Resources Without Limits or Throttling vulnerability in phenixdigital phoenix_storybook allows unauthenticated denial-of-service via BEAM atom table exhaustion.

Multiple LiveView event handlers convert user-supplied event parameter strings to atoms using String.toatom/1 without validation: 'Elixir.PhoenixStorybook.ExtraAssignsHelpers':handlesetvariationassign/3 interns every key of the psb-assign params map; 'Elixir.PhoenixStorybook.ExtraAssignsHelpers':handletogglevariationassign/3 interns the "attr" value from psb-toggle events; 'Elixir.PhoenixStorybook.ExtraAssignsHelpers':tovariationid/2 interns elements of "variationid"; and 'Elixir.PhoenixStorybook.ExtraAssignsHelpers':to_value/4 interns raw string values for attributes declared as :atom or :boolean. BEAM atoms are never garbage-collected, so each unique attacker-controlled string is a permanent allocation. Once the atom table ceiling (~1,048,576 atoms) is reached, the entire BEAM node aborts, taking down all applications running on it.

This issue affects phoenix_storybook from 0.2.0 before 1.1.0.

Configuration

Phoenix Storybook must be mounted on a network-reachable route.

Database specific

{
    "cwe_ids": [
        "CWE-770"
    ],
    "capec_ids": [
        "CAPEC-130"
    ],
    "cpe_ids": [
        "cpe:2.3:a:phenixdigital:phoenix_storybook:*:*:*:*:*:*:*:*"
    ]
}

References

Credits

- Peter Ullrich - FINDER
- Christian Blavier - REMEDIATION_DEVELOPER
- Jonatan Männchen - ANALYST

Affected packages

Hex / phoenix_storybook

Package

Name: phoenix_storybook
Purl: pkg:hex/phoenix_storybook

Affected ranges

Type: SEMVER
Events: Introduced

0.2.0

Fixed

1.1.0

Affected versions

0.*

0.5.0

0.5.1

0.5.2

0.5.3

0.5.4

0.5.5

0.5.6

0.5.7

0.6.0

0.6.1

0.6.2

0.6.3

0.6.4

0.7.0

0.7.1

0.7.2

0.8.0

0.8.1

0.8.2

0.8.3

0.9.0

0.9.1

0.9.2

0.9.3

1.*

1.0.0

Database specific

source

"https://cna.erlef.org/osv/EEF-CVE-2026-8469.json"

Git / github.com/phenixdigital/phoenix_storybook

Affected ranges

Type: GIT
Repo: https://github.com/phenixdigital/phoenix_storybook
Events: Introduced

0228669d55c23a754d1ef11f49a32121129d5395

Fixed

96d524690af0fe197a49f60d18e564a620b9ef81

Affected versions

v0.*

v0.2.0

v0.3.0

v0.4.0

v0.4.1

v0.4.2

v0.4.3

v0.4.4

v0.4.5

v0.5.0

v0.5.1

v0.5.2

v0.5.3

v0.5.4

v0.5.5

v0.5.6

v0.5.7

v0.6.0

v0.6.1

v0.6.2

v0.6.3

v0.6.4

v0.7.0

v0.7.1

v0.7.2

v0.8.1

v0.8.3

v0.9.0

v0.9.1

v0.9.2

v0.9.3

v1.*

v1.0.0

Database specific

source

"https://cna.erlef.org/osv/EEF-CVE-2026-8469.json"