CVE-2026-35195
published 2026-04-09CVE-2026-35195: Wasmtime is a runtime for WebAssembly. Prior to 24.0.7, 36.0.7, 42.0.2, and 43.0.1, Wasmtime's implementation of transcoding strings between components…
PriorityP334medium5.4CVSS 3.1
AVNACLPRLUINSUCLILAN
EPSS
0.22%
11.9th percentile
Wasmtime is a runtime for WebAssembly. Prior to 24.0.7, 36.0.7, 42.0.2, and 43.0.1, Wasmtime's implementation of transcoding strings between components contains a bug where the return value of a guest component's realloc is not validated before the host attempts to write through the pointer. This enables a guest to cause the host to write arbitrary transcoded string bytes to an arbitrary location up to 4GiB away from the base of linear memory. These writes on the host could hit unmapped memory or could corrupt host data structures depending on Wasmtime's configuration. Wasmtime by default reserves 4GiB of virtual memory for a guest's linear memory meaning that this bug will by default on hosts cause the host to hit unmapped memory and abort the process due to an unhandled fault. Wasmtime can be configured, however, to reserve less memory for a guest and to remove all guard pages, so some configurations of Wasmtime may lead to corruption of data outside of a guest's linear memory, such as host data structures or other guests's linear memories. This vulnerability is fixed in 24.0.7, 36.0.7, 42.0.2, and 43.0.1.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| bytecodealliance | wasmtime | < 24.0.7 | 24.0.7 |
| bytecodealliance | wasmtime | — | — |
| bytecodealliance | wasmtime | — | — |
| bytecodealliance | wasmtime | — | — |
| bytecodealliance | wasmtime | — | — |
| bytecodealliance | wasmtime | >= 0 < 24.0.7 | 24.0.7 |
| bytecodealliance | wasmtime | >= 0.0.0-0 < 24.0.7 | 24.0.7 |
| bytecodealliance | wasmtime | >= 25.0.0 < 36.0.7 | 36.0.7 |
| bytecodealliance | wasmtime | >= 25.0.0 < 36.0.7 | 36.0.7 |
| bytecodealliance | wasmtime | >= 37.0.0 < 42.0.2 | 42.0.2 |
| bytecodealliance | wasmtime | >= 37.0.0 < 42.0.2 | 42.0.2 |
| bytecodealliance | wasmtime | >= 43.0.0 < 43.0.1 | 43.0.1 |
CVSS provenance
nvdv3.15.4MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
nvdv4.06.1MEDIUMCVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
vendor_redhat6.1MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
Wasmtime: Wasmtime: Data corruption and potential arbitrary code execution via unvalidated memory reallocation
vendor_redhat·2026-04-09·CVSS 6.1
CVE-2026-35195 [MEDIUM] CWE-787 Wasmtime: Wasmtime: Data corruption and potential arbitrary code execution via unvalidated memory reallocation
Wasmtime: Wasmtime: Data corruption and potential arbitrary code execution via unvalidated memory reallocation
A flaw was found in Wasmtime, a runtime for WebAssembly. A malicious guest component can exploit an issue where the host does not validate memory allocation requests. This allows the guest to write arbitrary data to locations outside its designated memory. Depending on the configuration, this could lead to corruption of critical host data or other guest environments, potentially resulting in information disclosure or the execution of unauthorized code.
Mitigation: Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation bas
OSV
Wasmtime has out-of-bounds write or crash when transcoding component model strings
osv·2026-04-09
CVE-2026-35195 [MEDIUM] Wasmtime has out-of-bounds write or crash when transcoding component model strings
Wasmtime has out-of-bounds write or crash when transcoding component model strings
### Impact
Wasmtime's implementation of transcoding strings between components contains a bug where the return value of a guest component's `realloc` is not validated before the host attempts to write through the pointer. This enables a guest to cause the host to write arbitrary transcoded string bytes to an arbitrary location up to 4GiB away from the base of linear memory. These writes on the host could hit unmapped memory or could corrupt host data structures depending on Wasmtime's configuration.
Wasmtime by default reserves 4GiB of virtual memory for a guest's linear memory meaning that this bug will by default on hosts cause the host to hit unmapped memory and abort the process due to an unhandled fa
VulDB
bytecodealliance wasmtime up to 24.0.6/36.0.6/42.0.1/44.0.0 out-of-bounds write (GHSA-394w-hwhg-8vgm)
vuldb·2026-04-09·CVSS 6.1
CVE-2026-35195 [MEDIUM] bytecodealliance wasmtime up to 24.0.6/36.0.6/42.0.1/44.0.0 out-of-bounds write (GHSA-394w-hwhg-8vgm)
A vulnerability was found in bytecodealliance wasmtime up to 24.0.6/36.0.6/42.0.1/44.0.0. It has been rated as critical. The impacted element is an unknown function. This manipulation causes out-of-bounds write.
This vulnerability is handled as CVE-2026-35195. The attack can be initiated remotely. There is not any exploit available.
Upgrading the affected component is advised.
GHSA
Wasmtime has out-of-bounds write or crash when transcoding component model strings
ghsa·2026-04-09
CVE-2026-35195 [MEDIUM] CWE-787 Wasmtime has out-of-bounds write or crash when transcoding component model strings
Wasmtime has out-of-bounds write or crash when transcoding component model strings
### Impact
Wasmtime's implementation of transcoding strings between components contains a bug where the return value of a guest component's `realloc` is not validated before the host attempts to write through the pointer. This enables a guest to cause the host to write arbitrary transcoded string bytes to an arbitrary location up to 4GiB away from the base of linear memory. These writes on the host could hit unmapped memory or could corrupt host data structures depending on Wasmtime's configuration.
Wasmtime by default reserves 4GiB of virtual memory for a guest's linear memory meaning that this bug will by default on hosts cause the host to hit unmapped memory and abort the process due to an unhandled fa
OSV
Out-of-bounds write or crash when transcoding component model strings
osv·2026-04-09
CVE-2026-35195 Out-of-bounds write or crash when transcoding component model strings
Out-of-bounds write or crash when transcoding component model strings
This is an entry in the RustSec database for the Wasmtime security advisory
located at
https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-394w-hwhg-8vgm
For more information see the GitHub-hosted security advisory.
No detection rules found.
No public exploits indexed.
Wiz
CVE-2026-34944 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 4.1
CVE-2026-34944 [MEDIUM] CVE-2026-34944 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-34944 :
Rust vulnerability analysis and mitigation
Wasmtime is a runtime for WebAssembly. Prior to 24.0.7, 36.0.7, 42.0.2, and 43.0.1, On x86-64 platforms with SSE3 disabled Wasmtime's compilation of the f64x2.splat WebAssembly instruction with Cranelift may load 8 more bytes than is necessary. When signals-based-traps are disabled this can result in a uncaught segfault due to loading from unmapped guard pages. With guard pages disabled it's possible for out-of-sandbox data to be loaded, but this data is not visible to WebAssembly guests. This vulnerability is fixed in 24.0.7, 36.0.7, 42.0.2, and 43.0.1.
Source : NVD
## 4.1
Score
Published April 9, 2026
Severity MEDIUM
CNA Score 4.1
Affected Technologies
Rust
Linux Debian
Has Public Exploit No
Has CISA KEV Exploi
Wiz
CVE-2026-5745 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.0
CVE-2026-5745 [CRITICAL] CVE-2026-5745 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-5745 :
Linux Debian vulnerability analysis and mitigation
A flaw was found in libarchive. A NULL pointer dereference vulnerability exists in the ACL parsing logic, specifically within the archive_acl_from_text_nl() function. When processing a malformed ACL string (such as a bare "d" or "default" tag without subsequent fields), the function fails to perform adequate validation before advancing the pointer. An attacker can exploit this by providing a maliciously crafted archive, causing an application utilizing the libarchive API (such as bsdtar) to crash, resulting in a Denial of Service (DoS).
Source : NVD
## 5.5
Score
Published April 7, 2026
Severity MEDIUM
CNA Score 5.5
Affected Technologies
Linux Debian
Linux Red Hat
Has Public Exploit No
Has CISA KEV Exploit
Wiz
CVE-2026-28808 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.3
CVE-2026-28808 [HIGH] CVE-2026-28808 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-28808 :
Linux Debian vulnerability analysis and mitigation
Incorrect Authorization vulnerability in Erlang OTP (inets modules) allows unauthenticated access to CGI scripts protected by directory rules when served via script_alias.
When script_alias maps a URL prefix to a directory outside DocumentRoot, mod_auth evaluates directory-based access controls against the DocumentRoot-relative path while mod_cgi executes the script at the ScriptAlias-resolved path. This path mismatch allows unauthenticated access to CGI scripts that directory rules were meant to protect.
This vulnerability is associated with program files lib/inets/src/http_server/mod_alias.erl, lib/inets/src/http_server/mod_auth.erl, and lib/inets/src/http_server/mod_cgi.erl.
This issue affects OTP from OTP 17.0
Wiz
CVE-2026-5442 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.0
CVE-2026-5442 [CRITICAL] CVE-2026-5442 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-5442 :
Linux Debian vulnerability analysis and mitigation
A heap buffer overflow vulnerability exists in the DICOM image decoder. Dimension fields are encoded using Value Representation (VR) Unsigned Long (UL), instead of the expected VR Unsigned Short (US), which allows extremely large dimensions to be processed. This causes an integer overflow during frame size calculation and results in out-of-bounds memory access during image decoding.
Source : NVD
Published April 9, 2026
CNA Score N/A
Affected Technologies
Linux Debian
Echo
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
orthanc
Sources
NVD
Debia
Wiz
CVE-2026-5443 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.0
CVE-2026-5443 [CRITICAL] CVE-2026-5443 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-5443 :
Linux Debian vulnerability analysis and mitigation
PALETTE COLOR
Source : NVD
Published April 9, 2026
CNA Score N/A
Affected Technologies
Linux Debian
Echo
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
orthanc
Sources
NVD
Debian 11, 12, 13, 14 No Fix Added at: Apr 09, 2026
Echo No Fix Added at: Apr 09, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.
## Related Linux Debian vulnerabilities:
CVE ID
Severity
Score
Technologies
Component name
CISA KEV exploit
Has fix
Published date
CVE-
Wiz
CVE-2026-24450 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.1
CVE-2026-24450 [HIGH] CVE-2026-24450 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-24450 :
Linux Debian vulnerability analysis and mitigation
An integer overflow vulnerability exists in the uncompressed_fp_dng_load_raw functionality of LibRaw Commit 8dc68e2. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.
Source : NVD
## 8.1
Score
Published April 7, 2026
Severity HIGH
CNA Score 8.1
Affected Technologies
Linux Debian
Linux Red Hat
Has Public Exploit Yes
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 13.1
Exploitation Probability (EPSS) N/A
Affected packages and libraries
libraw
LibRaw
Sources
NVD
Debian 11, 12, 13, 14 Severity HIGH No Fix Added at: Apr 09, 2026
Echo Severity
Wiz
CVE-2026-40024 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.0
CVE-2026-40024 [CRITICAL] CVE-2026-40024 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-40024 :
Linux Debian vulnerability analysis and mitigation
The Sleuth Kit through 4.14.0 contains a path traversal vulnerability in tsk_recover that allows an attacker to write files to arbitrary locations outside the intended recovery directory via crafted filenames or directory paths with path traversal sequences in a filesystem image. An attacker can craft a malicious filesystem image with embedded /../ sequences in filenames that, when processed by tsk_recover, writes files outside the output directory, potentially achieving code execution by overwriting shell configuration or cron entries.
Source : NVD
## 8.4
Score
Published April 8, 2026
Severity HIGH
CNA Score 8.4
Affected Technologies
Linux Debian
Echo
Has Public Exploit No
Has CISA KEV Exploit No
CISA K
Wiz
CVE-2026-5438 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.0
CVE-2026-5438 [CRITICAL] CVE-2026-5438 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-5438 :
Linux Debian vulnerability analysis and mitigation
Content-Encoding: gzip
Source : NVD
Published April 9, 2026
CNA Score N/A
Affected Technologies
Linux Debian
Echo
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
orthanc
Sources
NVD
Debian 11, 12, 13, 14 No Fix Added at: Apr 09, 2026
Echo No Fix Added at: Apr 09, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.
## Related Linux Debian vulnerabilities:
CVE ID
Severity
Score
Technologies
Component name
CISA KEV exploit
Has fix
Published d
Wiz
CVE-2026-4631 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.0
CVE-2026-4631 [CRITICAL] CVE-2026-4631 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-4631 :
Linux Debian vulnerability analysis and mitigation
Cockpit's remote login feature passes user-supplied hostnames and usernames from the web interface to the SSH client without validation or sanitization. An attacker with network access to the Cockpit web service can craft a single HTTP request to the login endpoint that injects malicious SSH options or shell commands, achieving code execution on the Cockpit host without valid credentials. The injection occurs during the authentication flow before any credential verification takes place, meaning no login is required to exploit the vulnerability.
Source : NVD
## 9.8
Score
Published April 7, 2026
Severity CRITICAL
CNA Score 9.8
Affected Technologies
Linux Debian
Linux Fedora
Has Public Exploit No
Has CISA KEV
Wiz
RUSTSEC-2026-0093 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.9
[MEDIUM] RUSTSEC-2026-0093 Impact, Exploitability, and Mitigation Steps | Wiz
## RUSTSEC-2026-0093 :
Rust vulnerability analysis and mitigation
This is an entry in the RustSec database for the Wasmtime security advisory
located at https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-hx6p-xpx3-jvvv For more information see the GitHub-hosted security advisory.
Source : NVD
## 6.9
Score
Published April 9, 2026
Severity MEDIUM
CNA Score N/A
Affected Technologies
Rust
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
wasmtime
Sources
NVD
Rust Has Fix Added at: Apr 09, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's
Wiz
RUSTSEC-2026-0095 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.9
[MEDIUM] RUSTSEC-2026-0095 Impact, Exploitability, and Mitigation Steps | Wiz
## RUSTSEC-2026-0095 :
Rust vulnerability analysis and mitigation
This is an entry in the RustSec database for the Wasmtime security advisory
located at https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-xx5w-cvp6-jv83 For more information see the GitHub-hosted security advisory.
Source : NVD
## 9
Score
Published April 9, 2026
Severity CRITICAL
CNA Score N/A
Affected Technologies
Rust
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
wasmtime
Sources
NVD
Rust Has Fix Added at: Apr 09, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's
Wiz
CVE-2026-5441 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.0
CVE-2026-5441 [CRITICAL] CVE-2026-5441 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-5441 :
Linux Debian vulnerability analysis and mitigation
DecodePsmctRle1
DicomImageDecoder.cpp
PMSCT_RLE1
Source : NVD
Published April 9, 2026
CNA Score N/A
Affected Technologies
Linux Debian
Echo
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
orthanc
Sources
NVD
Debian 11, 12, 13, 14 No Fix Added at: Apr 09, 2026
Echo No Fix Added at: Apr 09, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.
## Related Linux Debian vulnerabilities:
CVE ID
Severity
Score
Technologies
Component name
CISA KEV e
Wiz
CVE-2026-33551 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 3.5
CVE-2026-33551 [LOW] CVE-2026-33551 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-33551 :
Linux Debian vulnerability analysis and mitigation
[Restricted application credentials can create EC2 credentials]
Source : NVD
Published April 8, 2026
CNA Score N/A
Affected Technologies
Linux Debian
Echo
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
keystone
Sources
NVD
Debian 11, 12, 13, 14 No Fix Added at: Apr 09, 2026
Echo No Fix Added at: Apr 09, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.
## Related Linux Debian vulnerabilities:
CVE ID
Severity
Score
Technologies
Component n
Wiz
CVE-2026-35406 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.9
CVE-2026-35406 [MEDIUM] CVE-2026-35406 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-35406 :
Rust vulnerability analysis and mitigation
Aardvark-dns is an authoritative dns server for A/AAAA container records. From 1.16.0 to 1.17.0, a truncated TCP DNS query followed by a connection reset causes aardvark-dns to enter an unrecoverable infinite error loop at 100% CPU. This vulnerability is fixed in 1.17.1.
Source : NVD
## 6.2
Score
Published April 7, 2026
Severity MEDIUM
CNA Score 6.2
Affected Technologies
Rust
Linux Debian
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 1.6
Exploitation Probability (EPSS) N/A
Affected packages and libraries
aardvark-dns
container-tools:rhel8::aardvark-dns
Sources
NVD
Debian 12, 13, 14 Severity MEDIUM No Fix Added at:
Wiz
RUSTSEC-2026-0085 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.9
[MEDIUM] RUSTSEC-2026-0085 Impact, Exploitability, and Mitigation Steps | Wiz
## RUSTSEC-2026-0085 :
Rust vulnerability analysis and mitigation
This is an entry in the RustSec database for the Wasmtime security advisory
located at https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-m758-wjhj-p3jq For more information see the GitHub-hosted security advisory.
Source : NVD
## 5.6
Score
Published April 9, 2026
Severity MEDIUM
CNA Score N/A
Affected Technologies
Rust
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
wasmtime
Sources
NVD
Rust Has Fix Added at: Apr 09, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's
Wiz
CVE-2026-34946 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.9
CVE-2026-34946 [MEDIUM] CVE-2026-34946 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-34946 :
Rust vulnerability analysis and mitigation
Wasmtime is a runtime for WebAssembly. From 25.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime's Winch compiler contains a vulnerability where the compilation of the table.fill instruction can result in a host panic. This means that a valid guest can be compiled with Winch, on any architecture, and cause the host to panic. This represents a denial-of-service vulnerability in Wasmtime due to guests being able to trigger a panic. The specific issue is that a historical refactoring changed how compiled code referenced tables within the table.* instructions. This refactoring forgot to update the Winch code paths associated as well, meaning that Winch was using the wrong indexing scheme. Due to the feature support of Winch the
Wiz
CVE-2026-34987 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.0
CVE-2026-34987 [CRITICAL] CVE-2026-34987 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-34987 :
Linux Debian vulnerability analysis and mitigation
Wasmtime is a runtime for WebAssembly. From 25.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime with its Winch (baseline) non-default compiler backend may allow properly constructed guest Wasm to access host memory outside of its linear-memory sandbox. This vulnerability requires use of the Winch compiler (-Ccompiler=winch). By default, Wasmtime uses its Cranelift backend, not Winch. With Winch, the same incorrect assumption is present in theory on both aarch64 and x86-64. The aarch64 case has an observed-working proof of concept, while the x86-64 case is theoretical and may not be reachable in practice. This Winch compiler bug can allow the Wasm guest to access memory before or after the linear-memory region, indep
Wiz
CVE-2026-20911 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.8
CVE-2026-20911 [CRITICAL] CVE-2026-20911 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-20911 :
Linux Debian vulnerability analysis and mitigation
A heap-based buffer overflow vulnerability exists in the HuffTable::initval functionality of LibRaw Commit 0b56545 and Commit d20315b. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.
Source : NVD
## 9.8
Score
Published April 7, 2026
Severity CRITICAL
CNA Score 9.8
Affected Technologies
Linux Debian
Linux Red Hat
Has Public Exploit Yes
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 13.1
Exploitation Probability (EPSS) N/A
Affected packages and libraries
LibRaw
LibRaw-devel
Sources
NVD
Debian 11, 12, 13, 14 Severity CRITICAL No Fix Added
Wiz
CVE-2026-5437 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.0
CVE-2026-5437 [CRITICAL] CVE-2026-5437 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-5437 :
Linux Debian vulnerability analysis and mitigation
DicomStreamReader
Source : NVD
Published April 9, 2026
CNA Score N/A
Affected Technologies
Linux Debian
Echo
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
orthanc
Sources
NVD
Debian 11, 12, 13, 14 No Fix Added at: Apr 09, 2026
Echo No Fix Added at: Apr 09, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.
## Related Linux Debian vulnerabilities:
CVE ID
Severity
Score
Technologies
Component name
CISA KEV exploit
Has fix
Published date
Wiz
CVE-2026-34988 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 2.3
CVE-2026-34988 [LOW] CVE-2026-34988 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-34988 :
Rust vulnerability analysis and mitigation
Wasmtime is a runtime for WebAssembly. From 28.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime's implementation of its pooling allocator contains a bug where in certain configurations the contents of linear memory can be leaked from one instance to the next. The implementation of resetting the virtual memory permissions for linear memory used the wrong predicate to determine if resetting was necessary, where the compilation process used a different predicate. This divergence meant that the pooling allocator incorrectly deduced at runtime that resetting virtual memory permissions was not necessary while compile-time determine that virtual memory could be relied upon. The pooling allocator must be in use, Config::memory_guar
Wiz
CVE-2026-34078 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.3
CVE-2026-34078 [CRITICAL] CVE-2026-34078 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-34078 :
Linux Debian vulnerability analysis and mitigation
Flatpak is a Linux application sandboxing and distribution framework. Prior to 1.16.4, the Flatpak portal accepts paths in the sandbox-expose options which can be app-controlled symlinks pointing at arbitrary paths. Flatpak run mounts the resolved host path in the sandbox. This gives apps access to all host files and can be used as a primitive to gain code execution in the host context. This vulnerability is fixed in 1.16.4.
Source : NVD
## 9.3
Score
Published April 7, 2026
Severity CRITICAL
CNA Score 9.3
Affected Technologies
Linux Debian
Linux Red Hat
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 36
Exploitati
Wiz
CVE-2026-4878 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.0
CVE-2026-4878 [CRITICAL] CVE-2026-4878 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-4878 :
Linux Debian vulnerability analysis and mitigation
cap_set_file()
Source : NVD
## 6.7
Score
Published April 9, 2026
Severity MEDIUM
CNA Score 6.7
Affected Technologies
Linux Debian
Linux Red Hat
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
libcap2
libcap
Sources
NVD
Alpine edge Severity MEDIUM Has Fix Added at: Apr 09, 2026
Debian 11, 12, 13 Severity MEDIUM No Fix Added at: Apr 06, 2026
Debian 14 Severity MEDIUM Has Fix Added at: Apr 06, 2026
Echo Severity MEDIUM Has Fix Added at: Apr 06, 2026
Red Hat 6, 7, 8, 9, 10 Severity HIGH No Fix Added at: Apr 09, 2026
## Get a CVE risk as
Wiz
CVE-2026-35533 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.9
CVE-2026-35533 [MEDIUM] CVE-2026-35533 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-35533 :
Rust vulnerability analysis and mitigation
mise manages dev tools like node, python, cmake, and terraform. From 2026.2.18 through 2026.4.5, mise loads trust-control settings from a local project .mise.toml before the trust check runs. An attacker who can place a malicious .mise.toml in a repository can make that same file appear trusted and then reach dangerous directives such as [env] _.source, templates, hooks, or tasks.
Source : NVD
## 7.7
Score
Published April 7, 2026
Severity HIGH
CNA Score 7.7
Affected Technologies
Rust
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 2
Exploitation Probability (EPSS) N/A
Affected packages and libraries
mise
Sources
NVD
R
Wiz
CVE-2026-34080 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 6.8
CVE-2026-34080 [MEDIUM] CVE-2026-34080 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-34080 :
Linux Debian vulnerability analysis and mitigation
xdg-dbus-proxy is a filtering proxy for D-Bus connections. Prior to 0.1.7, a policy parser vulnerability allows bypassing eavesdrop restrictions. The proxy checks for eavesdrop=true in policy rules but fails to handle eavesdrop ='true' (with a space before the equals sign) and similar cases. Clients can intercept D-Bus messages they should not have access to. This vulnerability is fixed in 0.1.7.
Source : NVD
## 6.8
Score
Published April 7, 2026
Severity MEDIUM
CNA Score 6.8
Affected Technologies
Linux Debian
Linux Red Hat
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 8.1
Exploitation Probability (EPSS) N/A
Aff
Wiz
CVE-2026-34945 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 2.3
CVE-2026-34945 [LOW] CVE-2026-34945 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-34945 :
Rust vulnerability analysis and mitigation
Wasmtime is a runtime for WebAssembly. From 25.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime's Winch compiler contains a bug where a 64-bit table, part of the memory64 proposal of WebAssembly, incorrectly translated the table.size instruction. This bug could lead to disclosing data on the host's stack to WebAssembly guests. The host's stack can possibly contain sensitive data related to other host-originating operations which is not intended to be disclosed to guests. This bug specifically arose from a mistake where the return value of table.size was statically typed as a 32-bit integer, as opposed to consulting the table's index type to see how large the returned register could be. When combined with details about Wnich
Wiz
CVE-2026-35444 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.0
CVE-2026-35444 [CRITICAL] CVE-2026-35444 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-35444 :
Linux Debian vulnerability analysis and mitigation
SDL_image is a library to load images of various formats as SDL surfaces. In do_layer_surface() in src/IMG_xcf.c, pixel index values from decoded XCF tile data are used directly as colormap indices without validating them against the colormap size (cm_num). A crafted .xcf file with a small colormap and out-of-range pixel indices causes heap out-of-bounds reads of up to 762 bytes past the colormap allocation. Both IMAGE_INDEXED code paths are affected (bpp=1 and bpp=2). The leaked heap bytes are written into the output surface pixel data, making them potentially observable in the rendered image. This vulnerability is fixed with commit 996bf12888925932daace576e09c3053410896f8.
Source : NVD
## 7.1
Score
Published A
Wiz
CVE-2026-40025 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.0
CVE-2026-40025 [CRITICAL] CVE-2026-40025 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-40025 :
Linux Debian vulnerability analysis and mitigation
The Sleuth Kit through 4.14.0 contains an out-of-bounds read vulnerability in the APFS filesystem keybag parser where the wrapped_key_parser class follows attacker-controlled length fields without bounds checking, causing heap reads past the allocated buffer. An attacker can craft a malicious APFS disk image that triggers information disclosure or crashes when processed by any Sleuth Kit tool that parses APFS volumes.
Source : NVD
## 4.8
Score
Published April 8, 2026
Severity MEDIUM
CNA Score 4.8
Affected Technologies
Linux Debian
Echo
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 2
Exploitation Probability (EPS
Wiz
RUSTSEC-2026-0096 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.9
[MEDIUM] RUSTSEC-2026-0096 Impact, Exploitability, and Mitigation Steps | Wiz
## RUSTSEC-2026-0096 :
Rust vulnerability analysis and mitigation
This is an entry in the RustSec database for the Wasmtime security advisory
located at https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-jhxm-h53p-jm7w For more information see the GitHub-hosted security advisory.
Source : NVD
## 9
Score
Published April 9, 2026
Severity CRITICAL
CNA Score N/A
Affected Technologies
Rust
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
wasmtime
Sources
NVD
Rust Has Fix Added at: Apr 09, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's
Wiz
RUSTSEC-2026-0088 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.9
[MEDIUM] RUSTSEC-2026-0088 Impact, Exploitability, and Mitigation Steps | Wiz
## RUSTSEC-2026-0088 :
Rust vulnerability analysis and mitigation
This is an entry in the RustSec database for the Wasmtime security advisory
located at https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-6wgr-89rj-399p For more information see the GitHub-hosted security advisory.
Source : NVD
## 2.3
Score
Published April 9, 2026
Severity LOW
CNA Score N/A
Affected Technologies
Rust
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
wasmtime
Sources
NVD
Rust Has Fix Added at: Apr 09, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's ex
Wiz
CVE-2026-35186 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 6.1
CVE-2026-35186 [MEDIUM] CVE-2026-35186 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-35186 :
Linux Debian vulnerability analysis and mitigation
Wasmtime is a runtime for WebAssembly. From 25.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime's Winch compiler backend contains a bug where translating the table.grow operator causes the result to be incorrectly typed. For 32-bit tables this means that the result of the operator, internally in Winch, is tagged as a 64-bit value instead of a 32-bit value. This invalid internal representation of Winch's compiler state compounds into further issues depending on how the value is consumed. The primary consequence of this bug is that bytes in the host's address space can be stored/read from. This is only applicable to the 16 bytes before linear memory, however, as the only significant return value of table.grow that can
Wiz
CVE-2026-5444 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.0
CVE-2026-5444 [CRITICAL] CVE-2026-5444 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-5444 :
Linux Debian vulnerability analysis and mitigation
A heap buffer overflow vulnerability exists in the PAM image parsing logic. When Orthanc processes a crafted PAM image embedded in a DICOM file, image dimensions are multiplied using 32-bit unsigned arithmetic. Specially chosen values can cause an integer overflow during buffer size calculation, resulting in the allocation of a small buffer followed by a much larger write operation during pixel processing.
Source : NVD
Published April 9, 2026
CNA Score N/A
Affected Technologies
Linux Debian
Echo
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
orth
Wiz
RUSTSEC-2026-0084 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.9
[MEDIUM] RUSTSEC-2026-0084 Impact, Exploitability, and Mitigation Steps | Wiz
## RUSTSEC-2026-0084 :
Rust vulnerability analysis and mitigation
trace()
Source : NVD
Published April 9, 2026
CNA Score N/A
Affected Technologies
Rust
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
logprinter
Sources
NVD
Rust No Fix Added at: Apr 09, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.
## Related Rust vulnerabilities:
CVE ID
Severity
Score
Technologies
Component name
CISA KEV exploit
Has fix
Published date
CVE-2026-34971
CRITICAL
9
Rust
rust-wasmtime
No
Yes
Apr 09, 2026
CVE-2026-3519
Wiz
CVE-2026-35195 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 6.1
CVE-2026-35195 [MEDIUM] CVE-2026-35195 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-35195 :
Rust vulnerability analysis and mitigation
Wasmtime is a runtime for WebAssembly. Prior to 24.0.7, 36.0.7, 42.0.2, and 43.0.1, Wasmtime's implementation of transcoding strings between components contains a bug where the return value of a guest component's realloc is not validated before the host attempts to write through the pointer. This enables a guest to cause the host to write arbitrary transcoded string bytes to an arbitrary location up to 4GiB away from the base of linear memory. These writes on the host could hit unmapped memory or could corrupt host data structures depending on Wasmtime's configuration. Wasmtime by default reserves 4GiB of virtual memory for a guest's linear memory meaning that this bug will by default on hosts cause the host to hit unmapped m
Wiz
CVE-2026-39853 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.0
CVE-2026-39853 [CRITICAL] CVE-2026-39853 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-39853 :
Linux Debian vulnerability analysis and mitigation
osslsigncode is a tool that implements Authenticode signing and timestamping. Prior to 2.12, A stack buffer overflow vulnerability exists in osslsigncode in several signature verification paths. During verification of a PKCS#7 signature, the code copies the digest value from a parsed SpcIndirectDataContent structure into a fixed-size stack buffer (mdbuf[EVP_MAX_MD_SIZE], 64 bytes) without validating that the source length fits within the destination buffer. This pattern is present in the verification handlers for PE, MSI, CAB, and script files. An attacker can craft a malicious signed file with an oversized digest field in SpcIndirectDataContent. When a user verifies such a file with osslsigncode verify, the unbounded
Wiz
CVE-2026-5439 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.0
CVE-2026-5439 [CRITICAL] CVE-2026-5439 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-5439 :
Linux Debian vulnerability analysis and mitigation
A memory exhaustion vulnerability exists in ZIP archive processing. Orthanc automatically extracts ZIP archives uploaded to certain endpoints and trusts metadata fields describing the uncompressed size of archived files. An attacker can craft a small ZIP archive containing a forged size value, causing the server to allocate extremely large buffers during extraction.
Source : NVD
Published April 9, 2026
CNA Score N/A
Affected Technologies
Linux Debian
Echo
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
orthanc
Sources
NVD
Debian 11, 12, 13, 14
Wiz
CVE-2026-40026 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.0
CVE-2026-40026 [CRITICAL] CVE-2026-40026 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-40026 :
Linux Debian vulnerability analysis and mitigation
The Sleuth Kit through 4.14.0 contains an out-of-bounds read vulnerability in the ISO9660 filesystem parser where the parse_susp() function trusts len_id, len_des, and len_src fields from the disk image to memcpy data into a stack buffer without verifying that the source data falls within the parsed SUSP block. An attacker can craft a malicious ISO image that causes reads past the end of the SUSP data buffer, and a zero-length SUSP entry can trigger an infinite parsing loop.
Source : NVD
## 4.8
Score
Published April 8, 2026
Severity MEDIUM
CNA Score 4.8
Affected Technologies
Linux Debian
Echo
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Prob
Wiz
CVE-2026-39395 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.0
CVE-2026-39395 [CRITICAL] CVE-2026-39395 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-39395 :
Linux Debian vulnerability analysis and mitigation
Cosign provides code signing and transparency for containers and binaries. Prior to 3.0.6 and 2.6.3, cosign verify-blob-attestation may erroneously report a "Verified OK" result for attestations with malformed payloads or mismatched predicate types. For old-format bundles and detached signatures, this was due to a logic flaw in the error handling of the predicate type validation. For new-format bundles, the predicate type validation was bypassed completely. This vulnerability is fixed in 3.0.6 and 2.6.3.
Source : NVD
## 4.3
Score
Published April 7, 2026
Severity MEDIUM
CNA Score 4.3
Affected Technologies
Linux Debian
Echo
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV D
Wiz
RUSTSEC-2026-0092 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.9
[MEDIUM] RUSTSEC-2026-0092 Impact, Exploitability, and Mitigation Steps | Wiz
## RUSTSEC-2026-0092 :
Rust vulnerability analysis and mitigation
This is an entry in the RustSec database for the Wasmtime security advisory
located at https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-jxhv-7h78-9775 For more information see the GitHub-hosted security advisory.
Source : NVD
## 5.9
Score
Published April 9, 2026
Severity MEDIUM
CNA Score N/A
Affected Technologies
Rust
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
wasmtime
Sources
NVD
Rust Has Fix Added at: Apr 09, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's
Wiz
CVE-2026-34971 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.0
CVE-2026-34971 [CRITICAL] CVE-2026-34971 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-34971 :
Rust vulnerability analysis and mitigation
Wasmtime is a runtime for WebAssembly. From 32.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime's Cranelift compilation backend contains a bug on aarch64 when performing a certain shape of heap accesses which means that the wrong address is accessed. When combined with explicit bounds checks a guest WebAssembly module this can create a situation where there are two diverging computations for the same address: one for the address to bounds-check and one for the address to load. This difference in address being operated on means that a guest module can pass a bounds check but then load a different address. Combined together this enables an arbitrary read/write primitive for guest WebAssembly when accesssing host memory. This
Wiz
RUSTSEC-2026-0091 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.9
[MEDIUM] RUSTSEC-2026-0091 Impact, Exploitability, and Mitigation Steps | Wiz
## RUSTSEC-2026-0091 :
Rust vulnerability analysis and mitigation
This is an entry in the RustSec database for the Wasmtime security advisory
located at https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-394w-hwhg-8vgm For more information see the GitHub-hosted security advisory.
Source : NVD
## 6.1
Score
Published April 9, 2026
Severity MEDIUM
CNA Score N/A
Affected Technologies
Rust
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
wasmtime
Sources
NVD
Rust Has Fix Added at: Apr 09, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's
Wiz
CVE-2026-20889 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.8
CVE-2026-20889 [CRITICAL] CVE-2026-20889 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-20889 :
Linux Debian vulnerability analysis and mitigation
A heap-based buffer overflow vulnerability exists in the x3f_thumb_loader functionality of LibRaw Commit d20315b. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.
Source : NVD
## 9.8
Score
Published April 7, 2026
Severity CRITICAL
CNA Score 9.8
Affected Technologies
Linux Debian
Linux Red Hat
Has Public Exploit Yes
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 13.1
Exploitation Probability (EPSS) N/A
Affected packages and libraries
LibRaw
LibRaw-devel
Sources
NVD
Debian 11, 12, 13, 14 Severity CRITICAL No Fix Added at: Apr 09, 2026
Ec
Wiz
CVE-2026-4660 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.0
CVE-2026-4660 [CRITICAL] CVE-2026-4660 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-4660 :
Linux Debian vulnerability analysis and mitigation
HashiCorp’s go-getter library up to v1.8.5 may allow arbitrary file reads on the file system during certain git operations through a maliciously crafted URL. This vulnerability, CVE-2026-4660, is fixed in go-getter v1.8.6. This vulnerability does not affect the go-getter/v2 branch and package.
Source : NVD
## 7.5
Score
Published April 9, 2026
Severity HIGH
CNA Score 7.5
Affected Technologies
Linux Debian
Echo
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
golang-github-hashicorp-go-getter
Sources
NVD
Debian 11, 12 Severity HIGH No Fix Add
Wiz
CVE-2026-20709 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.8
CVE-2026-20709 [MEDIUM] CVE-2026-20709 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-20709 :
Linux Red Hat vulnerability analysis and mitigation
Use of Default Cryptographic Key in the hardware for some Intel(R) Pentium(R) Processor Silver Series, Intel(R) Celeron(R) Processor J Series, Intel(R) Celeron(R) Processor N Series may allow an escalation of privilege. Hardware reverse engineer adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via physical access when attack requirements are present with special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (high), integrity (none) and availability (none) of the vulnerable system, resulting in subsequent system confidentiality (high), integrity (high) and avail
Wiz
CVE-2026-39864 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.0
CVE-2026-39864 [CRITICAL] CVE-2026-39864 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-39864 :
Linux Debian vulnerability analysis and mitigation
Kamailio is an open source implementation of a SIP Signaling Server. Prior to 6.0.5 and 5.8.7, an out-of-bounds read in the auth module of Kamailio (formerly OpenSER and SER) allows remote attackers to cause a denial of service (process crash) via a specially crafted SIP packet if a successful user authentication without a database backend is followed by additional user identity checks. This vulnerability is fixed in 6.0.5 and 5.8.7.
Source : NVD
## 4.4
Score
Published April 8, 2026
Severity MEDIUM
CNA Score 4.4
Affected Technologies
Linux Debian
Echo
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 38.4
Exploitati
Wiz
RUSTSEC-2026-0094 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.9
[MEDIUM] RUSTSEC-2026-0094 Impact, Exploitability, and Mitigation Steps | Wiz
## RUSTSEC-2026-0094 :
Rust vulnerability analysis and mitigation
This is an entry in the RustSec database for the Wasmtime security advisory
located at https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-f984-pcp8-v2p7 For more information see the GitHub-hosted security advisory.
Source : NVD
## 6.1
Score
Published April 9, 2026
Severity MEDIUM
CNA Score N/A
Affected Technologies
Rust
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
wasmtime
Sources
NVD
Rust Has Fix Added at: Apr 09, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's
Wiz
CVE-2026-34941 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 6.9
CVE-2026-34941 [MEDIUM] CVE-2026-34941 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-34941 :
Rust vulnerability analysis and mitigation
Wasmtime is a runtime for WebAssembly. Prior to 24.0.7, 36.0.7, 42.0.2, and 43.0.1, Wasmtime contains a vulnerability where when transcoding a UTF-16 string to the latin1+utf16 component-model encoding it would incorrectly validate the byte length of the input string when performing a bounds check. Specifically the number of code units were checked instead of the byte length, which is twice the size of the code units. This vulnerability can cause the host to read beyond the end of a WebAssembly's linear memory in an attempt to transcode nonexistent bytes. In Wasmtime's default configuration this will read unmapped memory on a guard page, terminating the process with a segfault. Wasmtime can be configured, however, without gua
Wiz
CVE-2026-28810 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 6.3
CVE-2026-28810 [MEDIUM] CVE-2026-28810 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-28810 :
Linux Debian vulnerability analysis and mitigation
Generation of Predictable Numbers or Identifiers vulnerability in Erlang/OTP kernel (inet_res, inet_db modules) allows DNS Cache Poisoning.
The built-in DNS resolver (inet_res) uses a sequential, process-global 16-bit transaction ID for UDP queries and does not implement source port randomization. Response validation relies almost entirely on this ID, making DNS cache poisoning practical for an attacker who can observe one query or predict the next ID. This conflicts with RFC 5452 recommendations for mitigating forged DNS answers.
inet_res is intended for use in trusted network environments and with trusted recursive resolvers. Earlier documentation did not clearly state this deployment assumption, which could lead
Wiz
CVE-2026-39855 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.5
CVE-2026-39855 [MEDIUM] CVE-2026-39855 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-39855 :
Linux Debian vulnerability analysis and mitigation
osslsigncode is a tool that implements Authenticode signing and timestamping. Prior to 2.13, an integer underflow vulnerability exists in osslsigncode version 2.12 and earlier in the PE page-hash computation code (pe_page_hash_calc()). When page hash processing is performed on a PE file, the function subtracts hdrsize from pagesize without first validating that pagesize >= hdrsize. If a malicious PE file sets SizeOfHeaders (hdrsize) larger than SectionAlignment (pagesize), the subtraction underflows and produces a very large unsigned length. The code allocates a zero-filled buffer of pagesize bytes and then attempts to hash pagesize - hdrsize bytes from that buffer. After the underflow, this results in an out-of-bound
Wiz
CVE-2026-31842 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.7
CVE-2026-31842 [HIGH] CVE-2026-31842 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-31842 :
Linux Debian vulnerability analysis and mitigation
Tinyproxy through 1.11.3 is vulnerable to HTTP request parsing desynchronization due to a case-sensitive comparison of the Transfer-Encoding header in src/reqs.c. The is_chunked_transfer() function uses strcmp() to compare the header value against "chunked", even though RFC 7230 specifies that transfer-coding names are case-insensitive. By sending a request with Transfer-Encoding: Chunked, an unauthenticated remote attacker can cause Tinyproxy to misinterpret the request as having no body. In this state, Tinyproxy sets content_length.client to -1, skips pull_client_data_chunked(), forwards request headers upstream, and transitions into relay_connection() raw TCP forwarding while unread body data remains buffered. This
Wiz
CVE-2026-39860 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 6.3
CVE-2026-39860 [MEDIUM] CVE-2026-39860 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-39860 :
Linux Debian vulnerability analysis and mitigation
Nix is a package manager for Linux and other Unix systems. A bug in the fix for CVE-2024-27297 allowed for arbitrary overwrites of files writable by the Nix process orchestrating the builds (typically the Nix daemon running as root in multi-user installations) by following symlinks during fixed-output derivation output registration. This affects sandboxed Linux builds - sandboxed macOS builds are unaffected. The location of the temporary output used for the output copy was located inside the build chroot. A symlink, pointing to an arbitrary location in the filesystem, could be created by the derivation builder at that path. During output registration, the Nix process (running in the host mount namespace) would follow
Wiz
RUSTSEC-2026-0083 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.9
[MEDIUM] RUSTSEC-2026-0083 Impact, Exploitability, and Mitigation Steps | Wiz
## RUSTSEC-2026-0083 :
Rust vulnerability analysis and mitigation
zantetsu-trainer
zantetsu-trainer
## Migration
zantetsu-trainer
zantetsu 0.2
Source : NVD
Published April 7, 2026
CNA Score N/A
Affected Technologies
Rust
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
zantetsu-trainer
Sources
NVD
Rust No Fix Added at: Apr 09, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.
## Related Rust vulnerabilities:
CVE ID
Severity
Score
Technologies
Component name
CISA KEV exploit
Has fix
Published date
CVE-2
Wiz
RUSTSEC-2026-0090 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.9
[MEDIUM] RUSTSEC-2026-0090 Impact, Exploitability, and Mitigation Steps | Wiz
## RUSTSEC-2026-0090 :
Rust vulnerability analysis and mitigation
This is an entry in the RustSec database for the Wasmtime security advisory
located at https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-hfr4-7c6c-48w2 For more information see the GitHub-hosted security advisory.
Source : NVD
## 1
Score
Published April 9, 2026
Severity LOW
CNA Score N/A
Affected Technologies
Rust
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
wasmtime
Sources
NVD
Rust Has Fix Added at: Apr 09, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's expl
Wiz
CVE-2026-5440 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.0
CVE-2026-5440 [CRITICAL] CVE-2026-5440 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-5440 :
Linux Debian vulnerability analysis and mitigation
Content-Length
Content-Length
Source : NVD
Published April 9, 2026
CNA Score N/A
Affected Technologies
Linux Debian
Echo
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
orthanc
Sources
NVD
Debian 11, 12, 13, 14 No Fix Added at: Apr 09, 2026
Echo No Fix Added at: Apr 09, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.
## Related Linux Debian vulnerabilities:
CVE ID
Severity
Score
Technologies
Component name
CISA KEV exploit
Has fix
Pub
Wiz
CVE-2026-34942 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.9
CVE-2026-34942 [MEDIUM] CVE-2026-34942 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-34942 :
Rust vulnerability analysis and mitigation
Wasmtime is a runtime for WebAssembly. Prior to 24.0.7, 36.0.7, 42.0.2, and 43.0.1, Wasmtime's implementation of transcoding strings into the Component Model's utf16 or latin1+utf16 encodings improperly verified the alignment of reallocated strings. This meant that unaligned pointers could be passed to the host for transcoding which would trigger a host panic. This panic is possible to trigger from malicious guests which transfer very specific strings across components with specific addresses. Host panics are considered a DoS vector in Wasmtime as the panic conditions are controlled by the guest in this situation. This vulnerability is fixed in 24.0.7, 36.0.7, 42.0.2, and 43.0.1.
Source : NVD
## 5.9
Score
Published Apri
Wiz
CVE-2026-24660 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.1
CVE-2026-24660 [HIGH] CVE-2026-24660 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-24660 :
Linux Debian vulnerability analysis and mitigation
A heap-based buffer overflow vulnerability exists in the x3f_load_huffman functionality of LibRaw Commit d20315b. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.
Source : NVD
## 8.1
Score
Published April 7, 2026
Severity HIGH
CNA Score 8.1
Affected Technologies
Linux Debian
Linux Red Hat
Has Public Exploit Yes
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 13.1
Exploitation Probability (EPSS) N/A
Affected packages and libraries
libraw1394
libraw1394-devel
Sources
NVD
Debian 11, 12, 13, 14 Severity HIGH No Fix Added at: Apr 09, 2026
Ec
Wiz
CVE-2026-39856 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.0
CVE-2026-39856 [CRITICAL] CVE-2026-39856 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-39856 :
Linux Debian vulnerability analysis and mitigation
osslsigncode is a tool that implements Authenticode signing and timestamping. Prior to 2.13, an out-of-bounds read vulnerability exists in osslsigncode version 2.12 and earlier in the PE page-hash computation code (pe_page_hash_calc()). When processing PE sections for page hashing, the function uses PointerToRawData and SizeOfRawData values from section headers without validating that the referenced region lies within the mapped file. An attacker can craft a PE file with section headers that point beyond the end of the file. When osslsigncode computes page hashes for such a file, it may attempt to hash data from an invalid memory region, causing an out-of-bounds read and potentially crashing the process. The vulnerabi
Wiz
CVE-2026-33816 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.8
CVE-2026-33816 [CRITICAL] CVE-2026-33816 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-33816 :
Linux Red Hat vulnerability analysis and mitigation
Memory-safety vulnerability in github.com/jackc/pgx/v5.
Source : NVD
## 9.8
Score
Published April 7, 2026
Severity CRITICAL
CNA Score 9.8
Affected Technologies
Linux Red Hat
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 6.9
Exploitation Probability (EPSS) N/A
Affected packages and libraries
go-fdo-server
Sources
NVD
Red Hat 10 Severity HIGH No Fix Added at: Apr 09, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.
## Related Linux Red Hat vulnerabilities:
CVE ID
Severity
Score
Technologies
Component name
Wiz
RUSTSEC-2026-0086 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.9
[MEDIUM] RUSTSEC-2026-0086 Impact, Exploitability, and Mitigation Steps | Wiz
## RUSTSEC-2026-0086 :
Rust vulnerability analysis and mitigation
This is an entry in the RustSec database for the Wasmtime security advisory
located at https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-m9w2-8782-2946 For more information see the GitHub-hosted security advisory.
Source : NVD
## 2.3
Score
Published April 9, 2026
Severity LOW
CNA Score N/A
Affected Technologies
Rust
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
wasmtime
Sources
NVD
Rust Has Fix Added at: Apr 09, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's ex
Wiz
CVE-2026-39977 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.0
CVE-2026-39977 [CRITICAL] CVE-2026-39977 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-39977 :
Linux Debian vulnerability analysis and mitigation
flatpak-builder is a tool to build flatpaks from source. From 1.4.5 to before 1.4.8, the license-files manifest key takes an array of paths to user defined licence files relative to the source directory of the module. The paths from that array are resolved using g_file_resolve_relative_path() and validated to stay inside the source directory using two checks - g_file_get_relative_path() which does not resolve symlinks and g_file_query_file_type() with G_FILE_QUERY_INFO_NOFOLLOW_SYMLINKS which only applies to the final path component. The copy operation runs on host. This can be exploited by using a crafted manifest and/or source to read arbitrary files from the host and capture them into the build output. This vulnera
Wiz
CVE-2026-5445 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.0
CVE-2026-5445 [CRITICAL] CVE-2026-5445 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-5445 :
Linux Debian vulnerability analysis and mitigation
DecodeLookupTable
DicomImageDecoder.cpp
PALETTE COLOR
Source : NVD
Published April 9, 2026
CNA Score N/A
Affected Technologies
Linux Debian
Echo
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
orthanc
Sources
NVD
Debian 11, 12, 13, 14 No Fix Added at: Apr 09, 2026
Echo No Fix Added at: Apr 09, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.
## Related Linux Debian vulnerabilities:
CVE ID
Severity
Score
Technologies
Component name
CISA
Wiz
RUSTSEC-2026-0082 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.9
[MEDIUM] RUSTSEC-2026-0082 Impact, Exploitability, and Mitigation Steps | Wiz
## RUSTSEC-2026-0082 :
Rust vulnerability analysis and mitigation
zantetsu-ffi
zantetsu-ffi
## Migration
zantetsu-ffi
zantetsu 0.2
Source : NVD
Published April 7, 2026
CNA Score N/A
Affected Technologies
Rust
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
zantetsu-ffi
Sources
NVD
Rust No Fix Added at: Apr 09, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.
## Related Rust vulnerabilities:
CVE ID
Severity
Score
Technologies
Component name
CISA KEV exploit
Has fix
Published date
CVE-2026-34971
CRITI
Wiz
CVE-2026-33815 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.8
CVE-2026-33815 [CRITICAL] CVE-2026-33815 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-33815 :
Linux Red Hat vulnerability analysis and mitigation
Memory-safety vulnerability in github.com/jackc/pgx/v5.
Source : NVD
## 9.8
Score
Published April 7, 2026
Severity CRITICAL
CNA Score 9.8
Affected Technologies
Linux Red Hat
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 4.9
Exploitation Probability (EPSS) N/A
Affected packages and libraries
go-fdo-server
Sources
NVD
Red Hat 10 Severity HIGH No Fix Added at: Apr 09, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.
## Related Linux Red Hat vulnerabilities:
CVE ID
Severity
Score
Technologies
Component name
Wiz
CVE-2026-20884 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.1
CVE-2026-20884 [HIGH] CVE-2026-20884 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-20884 :
Linux Debian vulnerability analysis and mitigation
An integer overflow vulnerability exists in the deflate_dng_load_raw functionality of LibRaw Commit 8dc68e2. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.
Source : NVD
## 8.1
Score
Published April 7, 2026
Severity HIGH
CNA Score 8.1
Affected Technologies
Linux Debian
Linux Red Hat
Has Public Exploit Yes
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 13.1
Exploitation Probability (EPSS) N/A
Affected packages and libraries
libraw
LibRaw
Sources
NVD
Debian 11, 12, 13, 14 Severity HIGH No Fix Added at: Apr 09, 2026
Echo Severity HIGH No
Wiz
CVE-2026-39360 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.9
CVE-2026-39360 [MEDIUM] CVE-2026-39360 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-39360 :
Rust vulnerability analysis and mitigation
RustFS is a distributed object storage system built in Rust. Prior to alpha.90, RustFS contains a missing authorization check in the multipart copy path (UploadPartCopy). A low-privileged user who cannot read objects from a victim bucket can still exfiltrate victim objects by copying them into an attacker-controlled multipart upload and completing the upload. This breaks tenant isolation in multi-user / multi-tenant deployments. This vulnerability is fixed in alpha.90.
Source : NVD
## 5.3
Score
Published April 7, 2026
Severity MEDIUM
CNA Score 5.3
Affected Technologies
Rust
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 11
Wiz
CVE-2026-39863 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.0
CVE-2026-39863 [CRITICAL] CVE-2026-39863 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-39863 :
Linux Debian vulnerability analysis and mitigation
Kamailio is an open source implementation of a SIP Signaling Server. Prior to 6.1.1, 6.0.6, and 5.8.8, an out-of-bounds access in the core of Kamailio (formerly OpenSER and SER) allows remote attackers to cause a denial of service (process crash) via a specially crafted data packet sent over TCP. The issue impacts Kamailio instances having TCP or TLS listeners. This vulnerability is fixed in 5.1.1, 6.0.6, and 5.8.8.
Source : NVD
## 7.5
Score
Published April 8, 2026
Severity HIGH
CNA Score 7.5
Affected Technologies
Linux Debian
Linux Alpine
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 28.7
Exploitation Probabili
Wiz
CVE-2025-14911 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 7.1
CVE-2025-14911 [HIGH] CVE-2025-14911 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-14911 :
Linux Debian vulnerability analysis and mitigation
User-controlled chunkSize metadata from MongoDB lacks appropriate validation allowing malformed GridFS metadata to overflow the bounding container.
Source : NVD
## 7.1
Score
Published January 27, 2026
Severity HIGH
CNA Score 7.1
Affected Technologies
Linux Debian
Echo
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 19.4
Exploitation Probability (EPSS) 0.1
Affected packages and libraries
mongo-c-driver
Sources
NVD
Debian 11, 12, 13 Severity MEDIUM No Fix Added at: Apr 09, 2026
Debian 14 Severity MEDIUM Has Fix Added at: Apr 09, 2026
Echo Severity MEDIUM No Fix Added at: Apr 10, 2026
## Get a CVE risk asses
Wiz
CVE-2026-29181 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 7.5
CVE-2026-29181 [HIGH] CVE-2026-29181 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-29181 :
Linux Debian vulnerability analysis and mitigation
OpenTelemetry-Go is the Go implementation of OpenTelemetry. From 1.36.0 to 1.40.0, multi-value baggage: header extraction parses each header field-value independently and aggregates members across values. This allows an attacker to amplify cpu and allocations by sending many baggage: header lines, even when each individual value is within the 8192-byte per-value parse limit. This vulnerability is fixed in 1.41.0.
Source : NVD
## 7.5
Score
Published April 7, 2026
Severity HIGH
CNA Score 7.5
Affected Technologies
Linux Debian
Echo
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 12.2
Exploitation Probability (EPSS) N
Wiz
RUSTSEC-2026-0087 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.9
[MEDIUM] RUSTSEC-2026-0087 Impact, Exploitability, and Mitigation Steps | Wiz
## RUSTSEC-2026-0087 :
Rust vulnerability analysis and mitigation
This is an entry in the RustSec database for the Wasmtime security advisory
located at https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-qqfj-4vcm-26hv For more information see the GitHub-hosted security advisory.
Source : NVD
## 4.1
Score
Published April 9, 2026
Severity MEDIUM
CNA Score N/A
Affected Technologies
Rust
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
wasmtime
Sources
NVD
Rust Has Fix Added at: Apr 09, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's
Wiz
CVE-2026-21413 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.8
CVE-2026-21413 [CRITICAL] CVE-2026-21413 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-21413 :
Linux Debian vulnerability analysis and mitigation
A heap-based buffer overflow vulnerability exists in the lossless_jpeg_load_raw functionality of LibRaw Commit 0b56545 and Commit d20315b. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.
Source : NVD
## 9.8
Score
Published April 7, 2026
Severity CRITICAL
CNA Score 9.8
Affected Technologies
Linux Debian
Linux Red Hat
Has Public Exploit Yes
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 13.1
Exploitation Probability (EPSS) N/A
Affected packages and libraries
libraw1394-devel
libraw
Sources
NVD
Debian 11, 12, 13, 14 Severity CRITICAL No F
Wiz
CVE-2026-34943 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.6
CVE-2026-34943 [MEDIUM] CVE-2026-34943 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-34943 :
Rust vulnerability analysis and mitigation
Wasmtime is a runtime for WebAssembly. Prior to 24.0.7, 36.0.7, 42.0.2, and 43.0.1, Wasmtime contains a possible panic which can happen when a flags-typed component model value is lifted with the Val type. If bits are set outside of the set of flags the component model specifies that these bits should be ignored but Wasmtime will panic when this value is lifted. This panic only affects wasmtime's implementation of lifting into Val, not when using the flags! macro. This additionally only affects flags-typed values which are part of a WIT interface. This has the risk of being a guest-controlled panic within the host which Wasmtime considers a DoS vector. This vulnerability is fixed in 24.0.7, 36.0.7, 42.0.2, and 43.0.1.
Source
Wiz
CVE-2026-34079 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.7
CVE-2026-34079 [HIGH] CVE-2026-34079 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-34079 :
Linux Debian vulnerability analysis and mitigation
Flatpak is a Linux application sandboxing and distribution framework. Prior to 1.16.4, the caching for ld.so removes outdated cache files without properly checking that the app controlled path to the outdated cache is in the cache directory. This allows Flatpak apps to delete arbitrary files on the host. This vulnerability is fixed in 1.16.4.
Source : NVD
## 8.7
Score
Published April 7, 2026
Severity HIGH
CNA Score 8.7
Affected Technologies
Linux Debian
Linux Red Hat
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 42.4
Exploitation Probability (EPSS) 0.2
Affected packages and libraries
flatpak-selinux
flatpak-s
Wiz
RUSTSEC-2026-0089 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.9
[MEDIUM] RUSTSEC-2026-0089 Impact, Exploitability, and Mitigation Steps | Wiz
## RUSTSEC-2026-0089 :
Rust vulnerability analysis and mitigation
This is an entry in the RustSec database for the Wasmtime security advisory
located at https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-q49f-xg75-m9xw For more information see the GitHub-hosted security advisory.
Source : NVD
## 5.9
Score
Published April 9, 2026
Severity MEDIUM
CNA Score N/A
Affected Technologies
Rust
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
wasmtime
Sources
NVD
Rust Has Fix Added at: Apr 09, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's
Wiz
CVE-2026-34983 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.9
CVE-2026-34983 [MEDIUM] CVE-2026-34983 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-34983 :
Rust vulnerability analysis and mitigation
Wasmtime is a runtime for WebAssembly. In 43.0.0, cloning a wasmtime::Linker is unsound and can result in use-after-free bugs. This bug is not controllable by guest Wasm programs. It can only be triggered by a specific sequence of embedder API calls made by the host. Specifically, the following steps must occur to trigger the bug clone a wasmtime::Linker, drop the original linker instance, use the new, cloned linker instance, resulting in a use-after-free. This vulnerability is fixed in 43.0.1.
Source : NVD
## 1
Score
Published April 9, 2026
Severity LOW
CNA Score 1.0
Affected Technologies
Rust
Linux Debian
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitati
Bugzilla
CVE-2026-35195 Wasmtime: Wasmtime: Data corruption and potential arbitrary code execution via unvalidated memory reallocation
bugzilla·2026-04-09·CVSS 6.1
CVE-2026-35195 [MEDIUM] CVE-2026-35195 Wasmtime: Wasmtime: Data corruption and potential arbitrary code execution via unvalidated memory reallocation
CVE-2026-35195 Wasmtime: Wasmtime: Data corruption and potential arbitrary code execution via unvalidated memory reallocation
Wasmtime is a runtime for WebAssembly. Prior to 24.0.7, 36.0.7, 42.0.2, and 43.0.1, Wasmtime's implementation of transcoding strings between components contains a bug where the return value of a guest component's realloc is not validated before the host attempts to write through the pointer. This enables a guest to cause the host to write arbitrary transcoded string bytes to an arbitrary location up to 4GiB away from the base of linear memory. These writes on the host could hit unmapped memory or could corrupt host data structures depending on Wasmtime's configuration. Wasmtime by default reserves 4GiB of virtual memory for a guest's linear memory meaning that this
Bugzilla
CVE-2026-35195 tree-sitter: Wasmtime: Data corruption and potential arbitrary code execution via unvalidated memory reallocation [fedora-all]
bugzilla·2026-04-09·CVSS 6.1
CVE-2026-35195 [MEDIUM] CVE-2026-35195 tree-sitter: Wasmtime: Data corruption and potential arbitrary code execution via unvalidated memory reallocation [fedora-all]
CVE-2026-35195 tree-sitter: Wasmtime: Data corruption and potential arbitrary code execution via unvalidated memory reallocation [fedora-all]
Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
2026-04-09
Published