CVE-2026-32285
The Delete function fails to properly validate offsets when processing malformed JSON input. This can lead to a negative slice index and a r
CVSS
7.5
High
EPSS
0.8%
p51
KEV
—
Exploit Today
15
0-100
Published: Mar 26, 2026 · Last modified: Jul 15, 2026 · CWE-129 · CWE-1285
0.8%EPSS · 30 days0.8%
2026-06-302026-07-16
The Delete function fails to properly validate offsets when processing malformed JSON input. This can lead to a negative slice index and a runtime panic, allowing a denial of service attack.
- github.comhttps://github.com/buger/jsonparser/issues/275
- github.comhttps://github.com/golang/vulndb/issues/4514
- pkg.go.devhttps://pkg.go.dev/vuln/GO-2026-4514
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:13548
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:17121
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:17123
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:19099
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:21769
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:22347
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:22423
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:23345
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:34364
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:35111
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:36882
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:7191
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:9385
- access.redhat.comhttps://access.redhat.com/security/cve/CVE-2026-32285
- bugzilla.redhat.comhttps://bugzilla.redhat.com/show_bug.cgi?id=2451846
- security.access.redhat.comhttps://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-32285.json
- securityinfinity.comhttps://securityinfinity.com/research/buger-jsonparser-negative-slice-panic-dos-2026
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2026-20068.8 HIG61.3%
——18Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.2dCVE-2021-316588.1 HIG59.3%
——18TP-Link TL-SG2005, TL-SG2008, etc. 1.0.0 Build 20180529 Rel.40524 is affected by an Array index error. The interface that provides the "device description" function only judges the length of the received data, and does not filter special characters. This vulnerability will cause the application to crash, and all device configuration information will be erased.8dCVE-2026-30838.8 HIG52.7%
——16GStreamer rtpqdm2depay Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation.
The specific flaw exists within the processing of X-QDM RTP payload elements. When parsing the packetid element, the process does not properly validate user-supplied data, which can result in a write past the end of an allocated array. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-28850.2dCVE-2026-228599.1 CRI51.0%
——15FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, the URBDRC client does not perform bounds checking on server‑supplied MSUSB_INTERFACE_DESCRIPTOR values and uses them as indices in libusb_udev_complete_msconfig_setup, causing an out‑of‑bounds read. This vulnerability is fixed in 3.20.1.2dCVE-2026-214139.8 CRI50.6%
——15A heap-based buffer overflow vulnerability exists in the lossless_jpeg_load_raw functionality of LibRaw Commit 0b56545 and Commit d20315b. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.2dCVE-2025-672689.8 CRI48.0%
——14gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerability in the drivers/driver_nmea2000.c file. The hnd_129540 function, which handles NMEA2000 PGN 129540 (GNSS Satellites in View) packets, fails to validate the user-supplied satellite count against the size of the skyview array (184 elements). This allows an attacker to write beyond the bounds of the array by providing a satellite count up to 255, leading to memory corruption, Denial of Service (DoS), and potentially arbitrary code execution.2d