CVE-2026-5037 in mxml
요약 (영어)
A vulnerability was determined in mxml up to 4.0.4. This issue affects the function index_sort of the file mxml-index.c of the component mxmlIndexNew. Executing a manipulation of the argument tempr can lead to stack-based buffer overflow. The attack is restricted to local execution. The exploit has been publicly disclosed and may be utilized. This patch is called 6e27354466092a1ac65601e01ce6708710bb9fa5. A patch should be applied to remediate this issue.
공개
2026. 03. 29.
엔트리
| 게시됨 | 기본 | 임시 | 취약성 | CWE | 제품 | 악용 | 대책 | EPSS | CTI | CVE |
|---|---|---|---|---|---|---|---|---|---|---|
| 2026. 03. 27. | 3.3 | 3.0 | mxml mxmlIndexNew mxml-index.c index_sort 메모리 손상 | 121 | 알 수 없음 | 개념 증명 | 공식 수정 | 0.00013 | 1.69 | CVE-2026-5037 |