CVE Catalog

CVE-2026-9754

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.22%

12th percentile - higher than 12% of all known CVEs

Summary

An authenticated user with the read role may read limited amounts of uninitialized stack memory via specially-crafted issuances of the filemd5 command.

Risk Assessment

The ability to read uninitialized memory may lead to the exposure of sensitive data, posing a security risk to the system.

Recommendation

It is recommended to restrict access to the filemd5 command for users with read roles and to monitor the usage of this command.

Original NVD description (English source)

An authenticated user with the read role may read limited amounts of uninitialized stack memory via specially-crafted issuances of the filemd5 command

Vulnerability data from NVD (NIST) · CISA KEV · EPSS