7.1
CVE-2026-44066
- EPSS 0.29%
- Veröffentlicht 21.05.2026 07:34:53
- Zuletzt bearbeitet 21.05.2026 15:20:19
- Quelle 33c584b5-0579-4c06-b2a0-8d8329
- CVE-Watchlists
- Unerledigt
Heap out-of-bounds reads in Spotlight RPC unmarshalling
Multiple heap out-of-bounds reads in the Spotlight RPC unmarshalling code in Netatalk 3.1.0 through 4.4.2 allow a remote authenticated attacker to obtain sensitive information or cause a minor service disruption.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerNetatalk
≫
Produkt
Netatalk
Default Statusunaffected
Version <=
4.4.2
Version
3.1.0
Status
affected
Version
4.4.3
Status
unaffected
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.29% | 0.205 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| 33c584b5-0579-4c06-b2a0-8d8329fcab9c | 7.1 | 2.8 | 4.2 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L
|
CWE-125 Out-of-bounds Read
The product reads data past the end, or before the beginning, of the intended buffer.
https://netatalk.io/security/CVE-2026-44066