4.2
CVE-2026-1484
- EPSS 0.3%
- Veröffentlicht 27.01.2026 13:41:54
- Zuletzt bearbeitet 02.06.2026 14:16:45
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
Glib: integer overflow leading to buffer underflow and out-of-bounds write in glib g_base64_encode()
A flaw was found in the GLib Base64 encoding routine when processing very large input data. Due to incorrect use of integer types during length calculation, the library may miscalculate buffer boundaries. This can cause memory writes outside the allocated buffer. Applications that process untrusted or extremely large Base64 input using GLib may crash or behave unpredictably.
Daten sind bereitgestellt durch das CVE Programm von Authorized Data Publishers (ADP) (Unstrukturiert)
HerstellerSiemens
≫
Produkt
RUGGEDCOM RST2428P
Default Statusunknown
Version
0
Version <
V4.0
Status
affected
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.3% | 0.218 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| secalert@redhat.com | 4.2 | 1.6 | 2.5 |
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:L
|
CWE-787 Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.
https://access.redhat.com/security/cve/CVE-2026-1484
https://bugzilla.redhat.com/show_bug.cgi?id=2433259
https://gitlab.gnome.org/GNOME/glib/-/issues/3870
https://cert-portal.siemens.com/productcert/html/ssa-253495.html