CVE-2026-28364

CVSS v3 7.9 HIGH

7.9^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.5 / Impact : 4.7

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact LOW

Availability Impact NONE

Scope CHANGED

n OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization (runtime/intern.c) enables remote code execution through a multi-phase attack chain. The vulnerability stems from missing bounds validation in the readblock() function, which performs unbounded memcpy() operations using attacker-controlled lengths from crafted Marshal data.

References

Link	Resource
https://github.com/ocaml/security-advisories/blob/generated-osv/2026/OSEC-2026-01.json
https://osv.dev/vulnerability/OSEC-2026-01

Configurations

No configuration.

History

27 Feb 2026, 14:06

Type	Values Removed	Values Added
Summary		(es) En OCaml anterior a 4.14.3 y 5.x anterior a 5.4.1, un desbordamiento de lectura de búfer en la deserialización de Marshal (runtime/intern.c) permite la ejecución remota de código a través de una cadena de ataque multifase. La vulnerabilidad radica en la falta de validación de límites en la función readblock(), que realiza operaciones memcpy() sin límites utilizando longitudes controladas por el atacante a partir de datos Marshal manipulados.

27 Feb 2026, 04:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-02-27 04:16

Updated : 2026-02-27 14:06

NVD link : CVE-2026-28364

Mitre link : CVE-2026-28364

CVE.ORG link : CVE-2026-28364

JSON object : View

Products Affected

No product.

CWE

CWE-126

Buffer Over-read

7.9 /10