CVE-2026-1325
published 2026-01-22CVE-2026-1325: A security flaw has been discovered in Sangfor Operation and Maintenance Security Management System up to 3.0.12. This affects the function edit_pwd_mall of…
PriorityP261critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
0.52%
40.4th percentile
A security flaw has been discovered in Sangfor Operation and Maintenance Security Management System up to 3.0.12. This affects the function edit_pwd_mall of the file /fort/login/edit_pwd_mall. The manipulation of the argument flag results in weak password recovery. It is possible to launch the attack remotely. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sangfor | operation_and_maintenance_security_management_system | <= 3.0.12 | — |
| sangfor | operation_and_maintenance_security_management_system | — | — |
| sangfor | operation_and_maintenance_security_management_system | — | — |
| sangfor | operation_and_maintenance_security_management_system | — | — |
| sangfor | operation_and_maintenance_security_management_system | — | — |
| sangfor | operation_and_maintenance_security_management_system | — | — |
| sangfor | operation_and_maintenance_security_management_system | — | — |
| sangfor | operation_and_maintenance_security_management_system | — | — |
| sangfor | operation_and_maintenance_security_management_system | — | — |
| sangfor | operation_and_maintenance_security_management_system | — | — |
| sangfor | operation_and_maintenance_security_management_system | — | — |
| sangfor | operation_and_maintenance_security_management_system | — | — |
| sangfor | operation_and_maintenance_security_management_system | — | — |
| sangfor | operation_and_maintenance_security_management_system | — | — |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv4.05.5MEDIUMCVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:P/A:N
vendor_redhat4.7MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
weixin4j has Improperly Controlled Sequential Memory Allocation
ghsa·2026-01-27
CVE-2026-24819 [MEDIUM] CWE-1325 weixin4j has Improperly Controlled Sequential Memory Allocation
weixin4j has Improperly Controlled Sequential Memory Allocation
Improperly Controlled Sequential Memory Allocation vulnerability in foxinmy weixin4j (weixin4j-base/src/main/java/com/foxinmy/weixin4j/util modules). This vulnerability is associated with program files CharArrayBuffer.Java, ClassUtil.Java.
This issue affects all versions of weixin4j. A path is available: [d1c8258](https://github.com/foxinmy/weixin4j/commit/4b7ad14df6567064b468b4c9cb7a8bfeff48c8bd)
GHSA
GHSA-hhq2-w5v4-qxj2: A security flaw has been discovered in Sangfor Operation and Maintenance Security Management System up to 3
ghsa_unreviewed·2026-01-22
CVE-2026-1325 [MEDIUM] CWE-640 GHSA-hhq2-w5v4-qxj2: A security flaw has been discovered in Sangfor Operation and Maintenance Security Management System up to 3
A security flaw has been discovered in Sangfor Operation and Maintenance Security Management System up to 3.0.12. This affects the function edit_pwd_mall of the file /fort/login/edit_pwd_mall. The manipulation of the argument flag results in weak password recovery. It is possible to launch the attack remotely. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.
GitLab
Improperly Controlled Sequential Memory Allocation in Wireshark
vendor_gitlab·2026-04-30·CVSS 5.5
CVE-2026-6869 [MEDIUM] CWE-1325 Improperly Controlled Sequential Memory Allocation in Wireshark
Improperly Controlled Sequential Memory Allocation in Wireshark
WebSocket protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Affected products: Wireshark
Affected versions: >=4.6.0, =4.4.0, <4.4.15 (affected)
Solution: Upgrade to version 4.6.5 or above
Credit: Alexandre de Oliveira
GitLab
Improperly Controlled Sequential Memory Allocation in Wireshark
vendor_gitlab·2026-04-30·CVSS 5.5
CVE-2026-6535 [MEDIUM] CWE-1325 Improperly Controlled Sequential Memory Allocation in Wireshark
Improperly Controlled Sequential Memory Allocation in Wireshark
Dissection engine zlib decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Affected products: Wireshark
Affected versions: >=4.6.0, =4.4.0, <4.4.15 (affected)
Solution: Upgrade to version 4.6.5 or above
Credit: Brendan Coles
GitLab
Improperly Controlled Sequential Memory Allocation in Wireshark
vendor_gitlab·2026-04-30·CVSS 5.5
CVE-2026-6533 [MEDIUM] CWE-1325 Improperly Controlled Sequential Memory Allocation in Wireshark
Improperly Controlled Sequential Memory Allocation in Wireshark
Dissection engine LZ77 decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Affected products: Wireshark
Affected versions: >=4.6.0, =4.4.9, <4.4.15 (affected)
Solution: Upgrade to version 4.6.5 or above
Credit: Sharon Brizinov
GitLab
Improperly Controlled Sequential Memory Allocation in Wireshark
vendor_gitlab·2026-04-30·CVSS 5.5
CVE-2026-6867 [MEDIUM] CWE-1325 Improperly Controlled Sequential Memory Allocation in Wireshark
Improperly Controlled Sequential Memory Allocation in Wireshark
SMB2 protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
Affected products: Wireshark
Affected versions: >=4.6.0, =4.4.0, <4.4.15 (affected)
Solution: Upgrade to version 4.6.5 or above
Credit: TODO
Red Hat
wireshark: Improperly Controlled Sequential Memory Allocation in Wireshark
vendor_redhat·2026-02-25·CVSS 4.7
CVE-2026-3201 [MEDIUM] CWE-1325 wireshark: Improperly Controlled Sequential Memory Allocation in Wireshark
wireshark: Improperly Controlled Sequential Memory Allocation in Wireshark
USB HID protocol dissector memory exhaustion in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial of service
A flaw was found in the USB HID dissector in Wireshark. This issue occurs when malformed packets are decoded from a pcap file or the network, causing an excessive consumption of memory, resulting in a denial of service.
Statement: This issue will cause a crash in Wireshark with no other security impact. Also, this flaw can only be exploited when a malformed pcap file is processed. Due to these reasons, this vulnerability has been rated with a moderate severity.
Mitigation: If the USB HID protocol dissector is not being used, it can be disabled via the "Enabled Protocols" dialog box in the Wiresha
GitLab
Improperly Controlled Sequential Memory Allocation in Wireshark
vendor_gitlab·2026-02-25·CVSS 7.5
CVE-2026-3201 [HIGH] CWE-1325 Improperly Controlled Sequential Memory Allocation in Wireshark
Improperly Controlled Sequential Memory Allocation in Wireshark
USB HID protocol dissector memory exhaustion in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial of service
Affected products: Wireshark
Affected versions: >=4.6.0, =4.4.0, <4.4.14 (affected)
Solution: Upgrade to version 4.6.4 or above
Credit: 齐柯宇 (Qi Kery)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-01-22
Published