CVE Catalog

CVE-2026-12386

LowCVSS 3.9
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.10%

1th percentile — higher than 1% of all known CVEs

Summary

A vulnerability in Pardus Pen (TUBITAK BILGEM) due to improper null termination leads to buffer overflow. It affects versions <=4.1.5 before 4.2.1.

Risk Assessment

An attacker could exploit the buffer overflow to execute arbitrary code or cause system crashes, threatening data integrity and availability.

Recommendation

Immediately update Pardus Pen to version 4.2.1 or later, which includes the fix.

Original NVD description (English source)

Improper null termination vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus Pen allows Overflow Buffers. This issue affects Pardus Pen: from <=4.1.5 before 4.2.1.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS