7.1
CVE-2026-44064
- EPSS 0.17%
- Veröffentlicht 21.05.2026 07:34:49
- Zuletzt bearbeitet 21.05.2026 15:20:19
- Quelle 33c584b5-0579-4c06-b2a0-8d8329
- CVE-Watchlists
- Unerledigt
ASP session ID out-of-bounds access
An out-of-bounds read in ASP session ID handling in Netatalk 1.3 through 4.4.2 allows an adjacent network attacker to obtain limited information or cause a denial of service via a crafted ASP request.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerNetatalk
≫
Produkt
Netatalk
Default Statusunaffected
Version <=
4.4.2
Version
1.3
Status
affected
Version
4.4.3
Status
unaffected
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.17% | 0.066 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| 33c584b5-0579-4c06-b2a0-8d8329fcab9c | 7.1 | 2.8 | 4.2 |
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
|
CWE-125 Out-of-bounds Read
The product reads data past the end, or before the beginning, of the intended buffer.
https://netatalk.io/security/CVE-2026-44064