CVE-2026-5037 in mxml
Сводка (Английский)
A vulnerability was determined in mxml up to 4.0.4. This issue affects the function index_sort of the file mxml-index.c of the component mxmlIndexNew. Executing a manipulation of the argument tempr can lead to stack-based buffer overflow. The attack is restricted to local execution. The exploit has been publicly disclosed and may be utilized. This patch is called 6e27354466092a1ac65601e01ce6708710bb9fa5. A patch should be applied to remediate this issue.
Раскрытие
29.03.2026
Записи
| Опубликовано | База | Темп | Уязвимость | CWE | Прод | Экс | Кон | EPSS | CTI | CVE |
|---|---|---|---|---|---|---|---|---|---|---|
| 27.03.2026 | 3.3 | 3.0 | mxml mxmlIndexNew mxml-index.c index_sort повреждение памяти | 121 | Неизвестно | Доказательство концепции | Официальное исправление | 0.00000 | 1.59 | CVE-2026-5037 |