Logo
Retour à la veille

CVE-2026-50593

Publié : 5 juin 2026
Modifié : 5 juin 2026
Lien officiel NVD
Score CVSS
7.3
HIGH

Description détaillée

Graphite before 1.3.15 has an integer underflow and resultant out-of-bounds write via Graphite actions, because slotat does not ensure that an offset is within the allowed slot-map range.

Vecteur d'attaque (CVSS)

Vecteur brut :CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H

Références et Patchs

https://github.com/silnrsi/graphite/commit/ad78c6b7319909e1540c1b134e115ced03417866https://github.com/silnrsi/graphite/compare/1.3.14...1.3.15

Dernières Vulnérabilités

CVE-2026-6209

Improper Access Control, Missing Authorization vulnerability in HAVELSAN Inc. Geographic Tracking System allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Geographic Tracking System: before v0.0.2.

VOIR DÉTAILS

CVE-2026-6208

Authorization bypass through User-Controlled key vulnerability in HAVELSAN Inc. Geographic Tracking System allows Exploitation of Trusted Identifiers. This issue affects Geographic Tracking System: before v0.0.2.

VOIR DÉTAILS

CVE-2026-6207

Observable response discrepancy vulnerability in HAVELSAN Inc. Geographic Tracking System allows System Footprinting. This issue affects Geographic Tracking System: before v0.0.2.

VOIR DÉTAILS