CVE-2026-5190 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Out-of-bounds write in the streaming decoder component in aws-c-event-stream before 0.6.0 might allow a third party operating a server to cause memory corruptio…
High CVSS: 7.7

CVE-2026-5190

Out-of-bounds write in the streaming decoder component in aws-c-event-stream before 0.6.0 might allow a third party operating a server to cause memory corruption leading to arbitrary code execution on a client application that processes crafted event-stream messages.

To remediate this issue, users should upgrade to version 0.6.0 or later.
Vendor
-
Product
-
CWE
CWE-787
Yayın Tarihi
2026-03-31 18:16:59
Güncelleme
2026-04-01 14:23:37
Source Identifier
ff89ba41-3aa1-4d27-914a-91399e9639e5
KEV Date Added
-

Kategoriler

CWE-787 HIGH 2026

Referanslar

https://aws.amazon.com/security/security-bulletins/2026-011-aws/ https://github.com/awslabs/aws-c-event-stream/releases/tag/v0.6.0 https://github.com/awslabs/aws-c-event-stream/security/advisories/GHSA-xvjw-fjq5-68hf